Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff 4.0.7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-9147
LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote malicious users to cause a denial of service (crash) via a crafted TIFF file.
Libtiff Libtiff 4.0.7
1 EDB exploit
7.5
CVSSv2
CVE-2017-9117
In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff.
Libtiff Libtiff 4.0.7
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 16.04
4.3
CVSSv2
CVE-2016-5322
The setByteArray function in tif_dir.c in libtiff 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted tiff image.
Libtiff Libtiff
Debian Debian Linux 9.0
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2017-7602
LibTIFF 4.0.7 has a signed integer overflow, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
1 Github repository
6.8
CVSSv2
CVE-2017-7592
The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a left-shift undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
4.3
CVSSv2
CVE-2017-7593
tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is properly initialized, which might allow remote malicious users to obtain sensitive information from process memory via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7600
LibTIFF 4.0.7 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7601
LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7596
LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
6.8
CVSSv2
CVE-2017-7597
tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of representable values of type float" undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted im...
Libtiff Libtiff 4.0.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »