Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv2

CVE-2004-1183

Published: 06/01/2005 Updated: 11/10/2017
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
VMScore: 454
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Libtiff

Vulnerability Summary

Integer overflow in the tiffdump utility for libtiff 3.7.1 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF file.

Vulnerable Product Search on Vulmon Subscribe to Product

libtiff libtiff 3.5.6

libtiff libtiff 3.5.7

libtiff libtiff 3.5.1

libtiff libtiff 3.5.2

libtiff libtiff 3.5.3

libtiff libtiff 3.7.0

libtiff libtiff 3.7.1

libtiff libtiff 3.4

libtiff libtiff 3.6.0

libtiff libtiff 3.6.1

libtiff libtiff 3.5.4

libtiff libtiff 3.5.5

Vendor Advisories

Ubuntu Security Notice: tiff vulnerability
Dmitry V Levin discovered a buffer overflow in the “tiffdump” utility If an attacker tricked a user into processing a malicious TIFF image with tiffdump, they could cause a buffer overflow which at least causes the program to crash However, it is not entirely clear whether this can be exploited to execute arbitrary code with the privileges o ...
Red Hat: libtiff security update
Synopsis libtiff security update Type/Severity Security Advisory: Important Topic Updated libtiff packages that fix various integer overflows are now available Description The libtiff package contains a library of functions for manipulating TIFF(Tagged Image File Format) image format files ...
Red Hat: libtiff security update
Synopsis libtiff security update Type/Severity Security Advisory: Important Topic Updated libtiff packages that fix various integer overflows are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having important security impact by the Red HatSecurity Response Team Descripti ...
Debian Security Advisories: DSA-626-1 tiff -- unsanitised input
Dmitry V Levin discovered a buffer overflow in libtiff, the Tag Image File Format library for processing TIFF graphics files Upon reading a TIFF file it is possible to crash the application, and maybe also to execute arbitrary code For the stable distribution (woody) this problem has been fixed in version 355-6woody5 For the unstable distrib ...

References

NVD-CWE-Otherhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000920http://www.debian.org/security/2004/dsa-626http://security.gentoo.org/glsa/glsa-200501-06.xmlhttp://www.redhat.com/support/errata/RHSA-2005-019.htmlhttp://www.redhat.com/support/errata/RHSA-2005-035.htmlhttp://www.novell.com/linux/security/advisories/2005_01_libtiff_tiff.htmlhttp://secunia.com/advisories/13728/http://www.securityfocus.com/bid/12173http://secunia.com/advisories/13776http://www.mandriva.com/security/advisories?name=MDKSA-2005:001http://www.mandriva.com/security/advisories?name=MDKSA-2005:002http://www.mandriva.com/security/advisories?name=MDKSA-2005:052http://marc.info/?l=bugtraq&m=110503635113419&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18782https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9743https://usn.ubuntu.com/54-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook