CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A User Mode Write AV in Editor!TMethodImplementationIntercept+0x3c3682 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tiff file...

5.5CVSS6.7AI score0.00165EPSS

Exploits1

Vulnrichment•added 2023/02/13 12:0 a.m.•2 views

CVE-2023-0797

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tifunix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e...

6.8CVSS5.9AI score0.00013EPSS

Exploits1References6

Vulnrichment•added 2023/02/13 12:0 a.m.•3 views

CVE-2023-0804

LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127...

6.8CVSS6.7AI score0.00019EPSS

Exploits1References8

Vulnrichment•added 2022/10/21 12:0 a.m.•2 views

CVE-2022-3599

LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125...

5.5CVSS6.4AI score0.00039EPSS

Exploits1References6

Positive Technologies•added 2022/06/30 12:0 a.m.•2 views

PT-2022-6476 · Libtiff +9 · Libtiff +9

Name of the Vulnerable Software and Affected Versions: libtiff version 4.4.0 Description: The issue is related to a Divide By Zero error in the tiffcrop function of libtiff, which can be exploited by attackers to cause a denial-of-service via a crafted tiff file. This can be achieved by a remote...

8.8CVSS6.7AI score0.0375EPSS

Exploits56References310

OSV•added 2018/05/30 4:29 a.m.•3 views

CVE-2018-11556

tificc in Little CMS 2.9 has an out-of-bounds write in the cmsPipelineCheckAndRetreiveStages function in cmslut.c in liblcms2.a via a crafted TIFF file. NOTE: Little CMS developers do consider this a vulnerability because the issue is based on an sample program using LIBTIFF and do not apply to t...

7.8CVSS6.8AI score

Exploits0References2

OSV•added 2011/03/28 4:55 p.m.•3 views

CVE-2011-1167

Heap-based buffer overflow in the thunder aka ThunderScan decoder in tifthunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value...

7.9AI score

Exploits0References38

OSV•added 2008/08/27 8:41 p.m.•5 views

CVE-2008-2327

Multiple buffer underflows in the 1 LZWDecode, 2 LZWDecodeCompat, and 3 LZWDecodeVector functions in tiflzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODECLEAR code...

6.8CVSS7.3AI score0.01508EPSS

Exploits1References47

OSV•added 2005/05/14 4:0 a.m.•2 views

CVE-2005-1544

Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag...

7.8AI score

Exploits0References16

OSV•added 2005/01/10 5:0 a.m.•5 views

CVE-2004-1308

Integer overflow in 1 tifdirread.c and 2 tiffax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFFASCII or TIFFUNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow...

7.8AI score

Exploits0References18

Cvelist•added 2004/12/22 5:0 a.m.•23 views

CVE-2004-1308

7.7AI score0.12685EPSS

Exploits1References16

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by