Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff 4.0.3 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-10688
In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack.
Libtiff Libtiff 4.0.8
1 EDB exploit
5
CVSSv2
CVE-2017-12944
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation for short files, which allows remote malicious users to cause a denial of service (allocation failure and application crash) in the TIFFFetchStripThing function in tif_dirread.c during ...
Libtiff Libtiff 4.0.8
4.3
CVSSv2
CVE-2017-13726
There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack.
Libtiff Libtiff 4.0.8
6.8
CVSSv2
CVE-2017-11335
There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes out-of-bounds write (related to the ZIPDecode function in tif_zip.c). A crafted input may lead to a remote denial of service atta...
Libtiff Libtiff 4.0.8
6.8
CVSSv2
CVE-2016-10094
Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote malicious users to have unspecified impact via a crafted image.
Libtiff Libtiff 4.0.7
1 Github repository
4.3
CVSSv2
CVE-2017-18013
In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.
Libtiff Libtiff 4.0.9
4.3
CVSSv2
CVE-2016-3622
The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted TIFF image.
Libtiff Libtiff 4.0.6
5
CVSSv2
CVE-2016-3623
The rgb2ycbcr tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (divide-by-zero) by setting the (1) v or (2) h parameter to 0.
Libtiff Libtiff
Opensuse Opensuse 13.2
4.3
CVSSv2
CVE-2016-5315
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2016-5322
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 9.0
Debian Debian Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »