CVE Vulnerabilities

CVE-2004-0886

Published: Jan 27, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.

Affected Software

Name Vendor Start Version End Version
Libtiff Libtiff 3.4 3.4
Libtiff Libtiff 3.5.1 3.5.1
Libtiff Libtiff 3.5.2 3.5.2
Libtiff Libtiff 3.5.3 3.5.3
Libtiff Libtiff 3.5.4 3.5.4
Libtiff Libtiff 3.5.5 3.5.5
Libtiff Libtiff 3.5.7 3.5.7
Libtiff Libtiff 3.6.0 3.6.0
Libtiff Libtiff 3.6.1 3.6.1
Pdf_library Pdflib 5.0.2 5.0.2
Wxgtk2 Wxgtk2 * *
Wxgtk2 Wxgtk2 2.5_.0 2.5_.0
Red Hat Enterprise Linux 3 RedHat libtiff-0:3.5.7-20.1 *
Red Hat Enterprise Linux 3 RedHat kdegraphics-7:3.1.3-3.7 *
Red Hat Enterprise Linux 3 RedHat tetex-0:1.0.7-67.7 *
Tiff Ubuntu dapper *
Tiff Ubuntu devel *
Tiff Ubuntu edgy *
Tiff Ubuntu feisty *

References