Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2005-2452
HistoryAug 03, 2005 - 12:00 a.m.

CVE-2005-2452

2005-08-0300:00:00
ubuntu.com
ubuntu.com
15

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.066 Low

EPSS

Percentile

93.8%

JSON

libtiff up to 3.7.0 allows remote attackers to cause a denial of service
(application crash) via a TIFF image header with a zero “YCbCr subsampling”
value, which causes a divide-by-zero error in (1) tif_strip.c and (2)
tif_tile.c, a different vulnerability than CVE-2004-0804.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchtiff< 3.7.4-1ubuntu3.2UNKNOWN
ubuntu6.10noarchtiff< 3.8.2-6UNKNOWN
ubuntu7.04noarchtiff< 3.8.2-6UNKNOWN

Related

cve 2
ubuntucve 1
debiancve 2
nessus 19
securityvulns 4
openvas 20
freebsd 1
cert 4
gentoo 2
slackware 1
debian 2
osv 1
redhat 3
centos 3
suse 2
cve
cve
CVE-2004-0804
2004-11-03 05:00:00
CVE-2005-2452
2005-08-03 04:00:00
ubuntucve
ubuntucve
CVE-2004-0804
2004-11-03 00:00:00
debiancve
debiancve
CVE-2004-0804
2004-11-03 05:00:00
CVE-2005-2452
2005-08-03 04:00:00
nessus
nessus
Mandrake Linux Security Advisory : wxPythonGTK (MDKSA-2005:144)
2005-10-05 00:00:00
Mandrake Linux Security Advisory : kdegraphics (MDKSA-2005:143)
2005-10-05 00:00:00
FreeBSD : tiff -- divide-by-zero denial-of-service (b58ff497-6977-11d9-ae49-000c41e2cdad)
2005-07-13 00:00:00
securityvulns
securityvulns
MDKSA-2005:144 - Updated wxPythonGTK packages several vulnerabilities
2005-08-19 00:00:00
KDE Security Advisory: kfax libtiff vulnerabilities
2004-12-10 00:00:00
MDKSA-2004:111 - Updated wxGTK2 packages fix vulnerabilities
2004-10-22 00:00:00
openvas
openvas
FreeBSD Ports: tiff, linux-tiff
2008-09-04 00:00:00
FreeBSD Ports: tiff, linux-tiff
2008-09-04 00:00:00
Slackware Advisory SSA:2004-305-02 libtiff
2012-09-11 00:00:00
freebsd
freebsd
tiff -- divide-by-zero denial-of-service
2002-03-27 00:00:00
cert
cert
LibTIFF contains multiple heap-based buffer overflows
2004-12-01 00:00:00
LibTIFF contains multiple integer overflows
2004-12-01 00:00:00
LibTIFF vulnerable to denial-of-service condition
2004-12-01 00:00:00
gentoo
gentoo
kfax: Multiple overflows in the included TIFF library
2004-12-19 00:00:00
PDFlib: Multiple overflows in the included TIFF library
2004-12-05 00:00:00
slackware
slackware
[slackware-security] libtiff
2004-11-01 08:00:50
debian
debian
[SECURITY] [DSA 567-1] New libtiff packages fix remote code execution
2004-10-15 17:51:16
[SECURITY] [DSA 567-1] New libtiff packages fix remote code execution
2004-10-15 00:00:00
osv
osv
tiff - heap overflows
2004-10-15 00:00:00
redhat
redhat
(RHSA-2004:577) libtiff security update
2004-10-22 00:00:00
(RHSA-2005:021) kdegraphics security update
2005-04-12 00:00:00
(RHSA-2005:354) tetex security update
2005-04-01 00:00:00
centos
centos
tetex security update
2005-04-01 21:29:55
kdegraphics security update
2005-04-12 23:05:10
kdegraphics security update
2005-04-12 16:01:20
suse
suse
remote denial of service in kernel
2004-10-21 07:52:50
local privilege escalation in libtiff
2004-10-22 14:52:41

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.066 Low

EPSS

Percentile

93.8%

JSON
Related for UB:CVE-2005-2452
cve2ubuntucve1debiancve2nessus19securityvulns4openvas20freebsd1cert4gentoo2slackware1debian2osv1redhat3centos3suse2