Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 24/06/2010 Updated: 15/05/2013

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 447

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF prior to 3.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libtiff libtiff 3.5.5
libtiff libtiff 3.9
libtiff libtiff 3.5.6
libtiff libtiff 3.8.1
libtiff libtiff 3.8.2
libtiff libtiff 3.4
libtiff libtiff 3.5.7
libtiff libtiff 3.7.0
libtiff libtiff 3.7.2
libtiff libtiff 3.5.1
libtiff libtiff 3.5.2
libtiff libtiff 3.6.1
libtiff libtiff
libtiff libtiff 3.6.0
libtiff libtiff 3.9.0
libtiff libtiff 3.9.1
libtiff libtiff 3.5.3
libtiff libtiff 3.5.4
libtiff libtiff 3.7.1
libtiff libtiff 3.8.0
libtiff libtiff 3.7.3
libtiff libtiff 3.7.4

NVD-CWE-Other http://www.remotesensing.org/libtiff/v3.9.3.html http://marc.info/?l=oss-security&m=127736307002102&w=2 https://bugs.launchpad.net/ubuntu/lucid/+source/tiff/+bug/589145 http://marc.info/?l=oss-security&m=127781315415896&w=2 http://www.vupen.com/english/advisories/2011/0204 http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010 http://secunia.com/advisories/50726 http://security.gentoo.org/glsa/glsa-201209-02.xml https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-2443

Vulnerability Summary

References

Vulmon Search

About

Products

Connect