Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1308

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-1308
Last Modified 21 Aug 2010 12:22:11
Published 10 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1308

Summary

Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED directory entry with a -1 entry count, which leads to a heap-based buffer overflow.

Vulnerable Systems

Application

  • Libtiff 3.4

  • Libtiff 3.5.1

  • Libtiff 3.5.2

  • Libtiff 3.5.3

  • Libtiff 3.5.4

  • Libtiff 3.5.5

  • Libtiff 3.5.7

  • Libtiff 3.6.0

  • Libtiff 3.6.1

  • Libtiff 3.7.0


References

CERT-VN - VU#125598

CERT - TA05-136A

IDEFENSE - 20041221 libtiff Directory Entry Count Integer Overflow Vulnerability

XF - libtiff-tiff-tdircount-bo(18637)

REDHAT - RHSA-2005:035

REDHAT - RHSA-2005:019

SUSE - SUSE-SA:2005:001

DEBIAN - DSA-617

SUNALERT - 201072

APPLE - APPLE-SA-2005-05-03

MANDRAKE - MDKSA-2005:052

SUNALERT - 101677

SECUNIA - 13776

CONECTIVA - CLA-2005:920


Last Updated: 27 May 2016 10:38:58