Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff 4.0.7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-9147
LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote malicious users to cause a denial of service (crash) via a crafted TIFF file.
Libtiff Libtiff 4.0.7
1 EDB exploit
7.5
CVSSv2
CVE-2017-9117
In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.
Libtiff Libtiff 4.0.7
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 16.04
4.3
CVSSv2
CVE-2016-5322
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 9.0
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2017-7593
tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote malicious users to obtain sensitive information from process memory via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7597
tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted im...
Libtiff Libtiff 4.0.7
4.3
CVSSv2
CVE-2017-7598
tif_dirread.c in LibTIFF 4.0.7 might allow remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7599
LibTIFF 4.0.7 has an "outside the range of representable values of type short" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7600
LibTIFF 4.0.7 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7601
LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7602
LibTIFF 4.0.7 has a signed integer overflow, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »