Libtiff

Libtiff

258 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2010-2065

  • EPSS 5.58%
  • Published 24.06.2010 12:30:01
  • Last modified 11.04.2025 00:51:21

Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.

6.8

CVE-2010-2067

  • EPSS 2.8%
  • Published 24.06.2010 12:30:01
  • Last modified 11.04.2025 00:51:21

Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance ...

9.3

CVE-2009-2347

  • EPSS 0.51%
  • Published 14.07.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a hea...

4.3

CVE-2009-2285

Exploit
  • EPSS 15.55%
  • Published 01.07.2009 13:00:01
  • Last modified 09.04.2025 00:30:58

Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327.

6.8

CVE-2008-2327

  • EPSS 1.92%
  • Published 27.08.2008 20:41:00
  • Last modified 09.04.2025 00:30:58

Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, ...

7.5

CVE-2006-3459

  • EPSS 69.31%
  • Published 03.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

Multiple stack-based buffer overflows in the TIFF library (libtiff) before 3.8.2, as used in Adobe Reader 9.3.0 and other products, allow context-dependent attackers to execute arbitrary code or cause a denial of service via unspecified vectors, incl...

7.5

CVE-2006-3460

  • EPSS 0.81%
  • Published 03.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line...

7.5

CVE-2006-3461

  • EPSS 3.2%
  • Published 03.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors.

7.5

CVE-2006-3462

  • EPSS 2.03%
  • Published 03.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images.

7.8

CVE-2006-3463

  • EPSS 3.57%
  • Published 03.08.2006 01:04:00
  • Last modified 03.04.2025 01:03:51

The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value,...