Libtiff : Security Vulnerabilities, CVEs, Published In 2005 (Overflow)
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
Max CVSS
7.5
EPSS Score
33.53%
Published
2005-05-14
Updated
2017-07-11
Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow.
Max CVSS
10.0
EPSS Score
12.92%
Published
2005-01-10
Updated
2017-10-11
Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted TIFF file.
Max CVSS
5.1
EPSS Score
8.22%
Published
2005-01-06
Updated
2017-10-11
Heap-based buffer overflow in the OJPEGVSetField function in tif_ojpeg.c for libtiff 3.6.1 and earlier, when compiled with the OJPEG_SUPPORT (old JPEG support) option, allows remote attackers to execute arbitrary code via a malformed TIFF image.
Max CVSS
10.0
EPSS Score
3.43%
Published
2005-01-27
Updated
2017-07-11
4 vulnerabilities found