Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-0929
Heap-based buffer overflow in the OJPEGVSetField function in tif_ojpeg.c for libtiff 3.6.1 and previous versions, when compiled with the OJPEG_SUPPORT (old JPEG support) option, allows remote malicious users to execute arbitrary code via a malformed TIFF image.
Libtiff Libtiff 3.6.1
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 8.2
Suse Suse Linux 8
Suse Suse Linux 1.0
Suse Suse Linux 8.1
10
CVSSv2
CVE-2004-1308
Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote malicious users to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflo...
Libtiff Libtiff 3.4
Libtiff Libtiff 3.6.0
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.7.0
Libtiff Libtiff 3.5.3
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.5
Libtiff Libtiff 3.5.7
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.5.2
9.3
CVSSv2
CVE-2011-0191
Buffer overflow in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes prior to 10.2 on Windows and other products, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image with JPE...
Apple Itunes 4.1.0
Apple Itunes 4.2.0
Apple Itunes 4.7.1
Apple Itunes 4.7.2
Apple Itunes 6.0.1
Apple Itunes 6.0.2
Apple Itunes 6.0.3
Apple Itunes 7.1.0
Apple Itunes 7.1.1
Apple Itunes 7.4.1
Apple Itunes 7.4.2
Apple Itunes 4.0.0
Apple Itunes 4.0.1
Apple Itunes 4.7
Apple Itunes 4.7.0
Apple Itunes 5.0.1
Apple Itunes 6.0.0
Apple Itunes 7.0.1
Apple Itunes 7.0.2
Apple Itunes 7.4
Apple Itunes 7.4.0
Apple Itunes 7.6.0
9.3
CVSSv2
CVE-2011-0192
Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes prior to 10.2 on Windows and other products, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF ...
Apple Itunes 4.0.0
Apple Itunes 4.0.1
Apple Itunes 4.7
Apple Itunes 4.7.0
Apple Itunes 6.0.0
Apple Itunes 6.0.1
Apple Itunes 7.0.1
Apple Itunes 7.0.2
Apple Itunes 7.4
Apple Itunes 7.4.0
Apple Itunes 7.6.1
Apple Itunes 7.6.2
Apple Itunes 8.1
Apple Itunes 8.1.1
Apple Itunes 9.2
Apple Itunes 9.2.1
Apple Itunes 4.1.0
Apple Itunes 4.2.0
Apple Itunes 4.7.1
Apple Itunes 4.7.2
Apple Itunes 6.0.2
Apple Itunes 6.0.3
9.3
CVSSv2
CVE-2010-0188
Unspecified vulnerability in Adobe Reader and Acrobat 8.x prior to 8.2.1 and 9.x prior to 9.3.1 allows malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors.
Adobe Acrobat Reader 8.1
Adobe Acrobat Reader 8.0
Adobe Acrobat Reader 8.1.7
Adobe Acrobat Reader 9.0
Adobe Acrobat Reader 8.1.5
Adobe Acrobat Reader 8.1.6
Adobe Acrobat Reader 9.2
Adobe Acrobat Reader 9.3
Adobe Acrobat Reader 8.1.1
Adobe Acrobat Reader 8.1.2
Adobe Acrobat Reader 9.1
Adobe Acrobat Reader 9.1.1
Adobe Acrobat Reader 8.1.4
Adobe Acrobat Reader 8.1.3
Adobe Acrobat Reader 9.1.2
Adobe Acrobat Reader 9.1.3
4 EDB exploits
2 Github repositories
12 Articles
9.3
CVSSv2
CVE-2009-2347
Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 up to and including 3.8.2, 3.9, and 4.0 allow context-dependent malicious users to execute arbitrary code via a TIFF image with large (1) width and (2) height values, which triggers a heap-based buff...
Libtiff Libtiff 3.8.0
Libtiff Libtiff 3.8.1
Libtiff Libtiff 3.9
Libtiff Libtiff 4.0
Libtiff Libtiff 3.8.2
7.8
CVSSv2
CVE-2006-3463
The EstimateStripByteCounts function in TIFF library (libtiff) prior to 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent malicious users to cause a denial of service via a large td_nstrips value, which triggers an inf...
Libtiff Libtiff
7.5
CVSSv2
CVE-2021-25289
An issue exists in Pillow prior to 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.
Python Pillow
7.5
CVSSv2
CVE-2019-19948
In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overflow in the function WriteSGIImage of coders/sgi.c.
Imagemagick Imagemagick 7.0.8-43
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 20.04
7.5
CVSSv2
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »