LibTIFF FAX3 Decoder Remote Integer Overflow Vulnerability

LibTIFF is prone to a remote integer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue to execute arbitrary malicious code in the context of a user running an application that uses the affected library. Failed exploit attempts will likely crash the application.

LibTIFF versions prior to 3.9.3 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus