LibTIFF Multiple Remote Integer Overflow Vulnerabilities

LibTIFF is prone to multiple remote integer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit these issues to execute arbitrary malicious code in the context of a user running an application that uses the affected library. Failed exploit attempts will likely crash the application.

LibTIFF 3.8.2, 3.9, and 4.0 are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus