Published: 28/09/2010 Updated: 30/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

LibTIFF prior to 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TIFF image.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libtiff libtiff 3.9.2-5.2.1
opensuse opensuse 11.3

Debian Bug report logs - #600188 tiff: CVE-2010-3087 Package: tiff; Maintainer for tiff is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Thu, 14 Oct 2010 13:24:02 UTC Severity: grave Tags: security Fixed in version tiff/394-5 Done: Jay Berkenbilt < ...

Certain applications could be made to run programs as your login if they opened a specially crafted TIFF file ...

Fix regression in CCITTFAX4 processing ...

CWE-119 https://bugzilla.novell.com/show_bug.cgi?id=624215 http://support.novell.com/security/cve/CVE-2010-3087.html http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html http://blackberry.com/btsc/KB27244 http://secunia.com/advisories/50726 http://security.gentoo.org/glsa/glsa-201209-02.xml https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=600188 https://nvd.nist.gov https://usn.ubuntu.com/1085-1/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3087

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect