Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff 3.9.4 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2012-1173
Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote malicious users to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer ov...
Libtiff Libtiff 3.9.4
605
VMScore
CVE-2012-4447
Heap-based buffer overflow in tif_pixarlog.c in LibTIFF prior to 4.0.3 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF image using the PixarLog Compression format.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 4.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.5
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 4.0.1
Libtiff Libtiff
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
605
VMScore
CVE-2012-5581
Stack-based buffer overflow in tif_dir.c in LibTIFF prior to 4.0.2 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 4.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.5
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.9.4
605
VMScore
CVE-2012-3401
The t2p_read_tiff_init function in tiff2pdf (tools/tiff2pdf.c) in LibTIFF 4.0.2 and previous versions does not properly initialize the T2P context struct pointer in certain error conditions, which allows context-dependent malicious users to cause a denial of service (crash) and p...
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 4.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 4.0.1
Libtiff Libtiff
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.9.4
605
VMScore
CVE-2012-2113
Multiple integer overflows in tiff2pdf in libtiff prior to 4.0.2 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 4.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.5
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.9.4
605
VMScore
CVE-2011-1167
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and previous versions allows remote malicious users to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.5.6
384
VMScore
CVE-2010-2481
The TIFFExtractData macro in LibTIFF prior to 3.9.4 does not properly handle unknown tag types in TIFF directory entries, which allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF file.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.5.6
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.9.1
435
VMScore
CVE-2010-2631
LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote malicious users to cause a denial of service (application crash) via a crafted file, a different vulnerab...
Libtiff Libtiff 3.9.0
1 EDB exploit
435
VMScore
CVE-2010-2482
LibTIFF 3.9.4 and previous versions does not properly handle an invalid td_stripbytecount field, which allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted TIFF file, a different vulnerability than CVE-2010-2443...
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.5.6
Libtiff Libtiff 3.5.1
1 EDB exploit
685
VMScore
CVE-2009-5022
Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF prior to 3.9.5 allows remote malicious users to execute arbitrary code via a crafted TIFF file.
Libtiff Libtiff 3.4
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.7.3
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9.3
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.8.2
Libtiff Libtiff 3.7.2
Libtiff Libtiff 3.9.2-5.2.1
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.7.1
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.2
Libtiff Libtiff
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.7.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.9.0
Libtiff Libtiff 3.5.6
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »