Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-0191
HistoryMar 02, 2011 - 12:00 a.m.

CVE-2011-0191

2011-03-0200:00:00
ubuntu.com
ubuntu.com
12

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.034 Low

EPSS

Percentile

91.3%

JSON

Buffer overflow in LibTIFF 3.9.4 and possibly other versions, as used in
ImageIO in Apple iTunes before 10.2 on Windows and other products, allows
remote attackers to execute arbitrary code or cause a denial of service
(application crash) via a crafted TIFF image with JPEG encoding.

Notes

Author Note
mdeslaur this doesn’t reproduce on 3.9.4 in lucid+
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchtiff< 3.7.4-1ubuntu3.9UNKNOWN
ubuntu8.04noarchtiff< 3.8.2-7ubuntu3.7UNKNOWN
ubuntu9.10noarchtiff< 3.8.2-13ubuntu0.4UNKNOWN

Related

debiancve 1
cve 1
prion 1
nessus 23
openvas 14
debian 3
osv 1
ubuntu 2
suse 6
securityvulns 5
debiancve
debiancve
CVE-2011-0191
2011-03-03 20:00:00
cve
cve
CVE-2011-0191
2011-03-03 20:00:00
prion
prion
Buffer overflow
2011-03-03 20:00:00
nessus
nessus
openSUSE Security Update : libtiff-devel (libtiff-devel-4144)
2014-06-13 00:00:00
openSUSE Security Update : libtiff-devel (libtiff-devel-4143)
2011-05-05 00:00:00
Mandriva Linux Security Advisory : libtiff (MDVSA-2011:064)
2011-04-05 00:00:00
openvas
openvas
Mandriva Update for libtiff MDVSA-2011:064 (libtiff)
2011-04-06 00:00:00
Mandriva Update for libtiff MDVSA-2011:064 (libtiff)
2011-04-06 00:00:00
Debian Security Advisory DSA 2210-1 (tiff)
2011-05-12 00:00:00
debian
debian
[SECURITY] [DSA 2210-1] tiff security update
2011-04-03 12:23:08
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
[SECURITY] [DSA-2210-2] tiff security update
2011-06-25 10:31:46
osv
osv
tiff - several
2011-04-03 00:00:00
ubuntu
ubuntu
tiff regression
2011-03-15 00:00:00
tiff vulnerabilities
2011-03-07 00:00:00
suse
suse
remote denial of service in kernel
2011-05-20 15:12:45
Security update for Linux kernel (important)
2011-06-29 19:08:19
remote denial of service, potential remote code in kernel
2011-06-29 16:32:28
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2011-03-23 00:00:00
About the security content of Mac OS X v10.6.7 and Security Update 2011-001
2011-03-23 00:00:00
About the security content of iTunes 10.2
2011-03-03 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.034 Low

EPSS

Percentile

91.3%

JSON
Related for UB:CVE-2011-0191
debiancve1cve1prion1nessus23openvas14debian3osv1ubuntu2suse6securityvulns5