Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-1411

Опубликовано: 14 июн. 2010
Источник: redhat
CVSS2: 6.8

Описание

Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6libtiffNot affected
Red Hat Enterprise Linux 3libtiffFixedRHSA-2010:052008.07.2010
Red Hat Enterprise Linux 4libtiffFixedRHSA-2010:051908.07.2010
Red Hat Enterprise Linux 5libtiffFixedRHSA-2010:051908.07.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=592361libtiff: integer overflows leading to heap overflow in Fax3SetupState

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-1411

ubuntu
около 15 лет назад

Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.

nvd логотип

CVE-2010-1411

nvd
около 15 лет назад

Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.

debian логотип

CVE-2010-1411

debian
около 15 лет назад

Multiple integer overflows in the Fax3SetupState function in tif_fax3. ...

github логотип

GHSA-83rf-qxj4-9458

github
больше 3 лет назад

Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.

fstec логотип

BDU:2015-02009

fstec
больше 10 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

6.8 Medium

CVSS2