Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtiff libtiff vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-3621
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and previous versions, when the "-c lzw" option is used, allows remote malicious users to cause a denial of service (buffer over-read) via a crafted BMP image.
Libtiff Libtiff
5
CVSSv2
CVE-2016-3658
The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.
Libtiff Libtiff
4.3
CVSSv2
CVE-2016-3625
tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted TIFF image.
Libtiff Libtiff
NA
CVE-2023-26965
loadImage() in tools/tiffcrop.c in LibTIFF up to and including 4.5.0 has a heap-based use after free via a crafted TIFF image.
Libtiff Libtiff
7.5
CVSSv2
CVE-2006-3460
Heap-based buffer overflow in the JPEG decoder in the TIFF library (libtiff) prior to 3.8.2 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size (TiffScanLineSiz...
Libtiff Libtiff
7.5
CVSSv2
CVE-2006-3461
Heap-based buffer overflow in the PixarLog decoder in the TIFF library (libtiff) prior to 3.8.2 might allow context-dependent malicious users to execute arbitrary code via unknown vectors.
Libtiff Libtiff
7.5
CVSSv2
CVE-2006-3462
Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library (libtiff) prior to 3.8.2 might allow context-dependent malicious users to execute arbitrary code via unknown vectors involving decoding large RLE images.
Libtiff Libtiff
7.8
CVSSv2
CVE-2006-3463
The EstimateStripByteCounts function in TIFF library (libtiff) prior to 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent malicious users to cause a denial of service via a large td_nstrips value, which triggers an inf...
Libtiff Libtiff
7.5
CVSSv2
CVE-2006-3464
TIFF library (libtiff) prior to 3.8.2 allows context-dependent malicious users to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving &...
Libtiff Libtiff
7.5
CVSSv2
CVE-2006-3465
Unspecified vulnerability in the custom tag support for the TIFF library (libtiff) prior to 3.8.2 allows remote malicious users to cause a denial of service (instability or crash) and execute arbitrary code via unknown vectors.
Libtiff Libtiff
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »