LibTIFF 'TIFFScanlineSize()' Function Heap-based Buffer Overflow Vulnerability

The LibTIFF is prone to a heap-based buffer overflow vulnerability because it fails to properly bounds check user-supplied data before copying it into an insufficiently sized buffer.

Successful exploits allow an attacker to execute arbitrary malicious code in the context of the application using the affected library. Failed exploit attempts will likely crash the application.

LibTIFF 4.0.3 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus