Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1307

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1307
Last Modified 21 Aug 2010 12:22:11
Published 21 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1307

Summary

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.3

  • Apple Mac Os X 10.3.1

  • Apple Mac Os X 10.3.2

  • Apple Mac Os X 10.3.3

  • Apple Mac Os X 10.3.4

  • Apple Mac Os X 10.3.5

  • Apple Mac Os X 10.3.6

  • Apple Mac Os X 10.3.7

  • Apple Mac Os X 10.3.8

  • Apple Mac Os X 10.3.9

  • Apple Mac Os X Server 10.3

  • Apple Mac Os X Server 10.3.1

  • Apple Mac Os X Server 10.3.2

  • Apple Mac Os X Server 10.3.3

  • Apple Mac Os X Server 10.3.4

  • Apple Mac Os X Server 10.3.5

  • Apple Mac Os X Server 10.3.6

  • Apple Mac Os X Server 10.3.7

  • Apple Mac Os X Server 10.3.8

  • Apple Mac Os X Server 10.3.9

  • Avaya Modular Messaging Message Storage Server 1.1

  • Avaya Modular Messaging Message Storage Server 2.0

  • Conectiva Linux 10.0

  • Conectiva Linux 9.0

  • Gentoo Linux

  • Mandrakesoft Mandrake Linux 10.0

  • Mandrakesoft Mandrake Linux 10.1

  • Mandrakesoft Mandrake Linux Corporate Server 3.0

  • Sco Unixware 7.1.4

  • Sun Solaris 10.0

  • Sun Solaris 7.0

  • Sun Solaris 8.0

  • Sun Solaris 9.0

Application

  • Avaya Call Management System Server 11.0

  • Avaya Call Management System Server 12.0

  • Avaya Call Management System Server 13.0

  • Avaya Call Management System Server 8.0

  • Avaya Call Management System Server 9.0

  • Avaya Cvlan

  • Avaya Integrated Management

  • Avaya Interactive Response

  • Avaya Interactive Response 1.2.1

  • Avaya Interactive Response 1.3

  • Avaya Intuity Audix Lx

  • Avaya Mn100

  • F5 Icontrol Service Manager 1.3

  • F5 Icontrol Service Manager 1.3.4

  • F5 Icontrol Service Manager 1.3.5

  • F5 Icontrol Service Manager 1.3.6

  • Libtiff 3.4

  • Libtiff 3.5.1

  • Libtiff 3.5.2

  • Libtiff 3.5.3

  • Libtiff 3.5.4

  • Libtiff 3.5.5

  • Libtiff 3.5.7

  • Libtiff 3.6.0

  • Libtiff 3.6.1

  • Libtiff 3.7.0

  • Sgi Propack 3.0


References

CERT-VN - VU#539110

CERT - TA05-136A

IDEFENSE - 20041221 libtiff STRIPOFFSETS Integer Overflow Vulnerability

APPLE - APPLE-SA-2005-05-03

SUNALERT - 201072

SUNALERT - 101677


Last Updated: 27 May 2016 10:38:58