6.8

CVE-2011-1167

Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LibtiffLibtiff Version <= 3.9.4
LibtiffLibtiff Version3.4
LibtiffLibtiff Version3.4 Updatebeta18
LibtiffLibtiff Version3.4 Updatebeta24
LibtiffLibtiff Version3.4 Updatebeta28
LibtiffLibtiff Version3.4 Updatebeta29
LibtiffLibtiff Version3.4 Updatebeta31
LibtiffLibtiff Version3.4 Updatebeta32
LibtiffLibtiff Version3.4 Updatebeta34
LibtiffLibtiff Version3.4 Updatebeta35
LibtiffLibtiff Version3.4 Updatebeta36
LibtiffLibtiff Version3.4 Updatebeta37
LibtiffLibtiff Version3.5.1
LibtiffLibtiff Version3.5.2
LibtiffLibtiff Version3.5.3
LibtiffLibtiff Version3.5.4
LibtiffLibtiff Version3.5.5
LibtiffLibtiff Version3.5.6
LibtiffLibtiff Version3.5.6 Updatebeta
LibtiffLibtiff Version3.5.7
LibtiffLibtiff Version3.5.7 Updatealpha
LibtiffLibtiff Version3.5.7 Updatealpha2
LibtiffLibtiff Version3.5.7 Updatealpha3
LibtiffLibtiff Version3.5.7 Updatealpha4
LibtiffLibtiff Version3.5.7 Updatebeta
LibtiffLibtiff Version3.6.0
LibtiffLibtiff Version3.6.0 Updatebeta
LibtiffLibtiff Version3.6.0 Updatebeta2
LibtiffLibtiff Version3.6.1
LibtiffLibtiff Version3.7.0
LibtiffLibtiff Version3.7.0 Updatealpha
LibtiffLibtiff Version3.7.0 Updatebeta
LibtiffLibtiff Version3.7.0 Updatebeta2
LibtiffLibtiff Version3.7.1
LibtiffLibtiff Version3.7.2
LibtiffLibtiff Version3.7.3
LibtiffLibtiff Version3.7.4
LibtiffLibtiff Version3.8.0
LibtiffLibtiff Version3.8.1
LibtiffLibtiff Version3.8.2
LibtiffLibtiff Version3.9
LibtiffLibtiff Version3.9.0
LibtiffLibtiff Version3.9.0 Updatebeta
LibtiffLibtiff Version3.9.1
LibtiffLibtiff Version3.9.2
LibtiffLibtiff Version3.9.2-5.2.1
LibtiffLibtiff Version3.9.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.23% 0.926
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://secunia.com/advisories/50726
http://security.gentoo.org/glsa/glsa-201209-02.xml
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
http://support.apple.com/kb/HT5130
http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
http://blackberry.com/btsc/KB27244
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://support.apple.com/kb/HT5281
http://secunia.com/advisories/43934
http://www.debian.org/security/2011/dsa-2210
http://www.mandriva.com/security/advisories?name=MDVSA-2011:064
http://www.vupen.com/english/advisories/2011/0845
http://www.vupen.com/english/advisories/2011/0859
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.html
http://secunia.com/advisories/44117
http://secunia.com/advisories/44135
http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.587820
http://www.vupen.com/english/advisories/2011/0905
http://www.vupen.com/english/advisories/2011/0930
http://www.vupen.com/english/advisories/2011/0960
http://bugzilla.maptools.org/show_bug.cgi?id=2300
Patch
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://secunia.com/advisories/43900
http://secunia.com/advisories/43974
http://securityreason.com/securityalert/8165
http://support.apple.com/kb/HT5503
http://ubuntu.com/usn/usn-1102-1
http://www.osvdb.org/71256
http://www.redhat.com/support/errata/RHSA-2011-0392.html
http://www.securityfocus.com/archive/1/517101/100/0/threaded
http://www.securityfocus.com/bid/46951
http://www.securitytracker.com/id?1025257
http://www.vupen.com/english/advisories/2011/0795
http://www.vupen.com/english/advisories/2011/0860
http://www.zerodayinitiative.com/advisories/ZDI-11-107
https://bugzilla.redhat.com/show_bug.cgi?id=684939
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/66247