Search Results (Refine Search)
- CPE Product Version: cpe:/a:libtiff:libtiff:3.9.0
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2010-2596 |
The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2, as used in tiff2ps, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF image, related to "downsampled OJPEG input." Published: July 02, 2010; 8:43:53 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2010-2595 |
The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ImageMagick, does not properly handle invalid ReferenceBlackWhite values, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers an array index error, related to "downsampled OJPEG input." Published: July 02, 2010; 8:43:53 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2010-2233 |
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, related to "downsampled OJPEG input." Published: July 02, 2010; 8:43:52 AM -0400 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2010-2443 |
The OJPEGReadBufferFill function in tif_ojpeg.c in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an OJPEG image with undefined strip offsets, related to the TIFFVGetField function. Published: June 24, 2010; 1:30:01 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2010-2067 |
Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file. Published: June 24, 2010; 8:30:01 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2010-2065 |
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow. Published: June 24, 2010; 8:30:01 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |