LibTIFF CVE-2017-7602 Integer Overflow Vulnerability

LibTIFF is prone to an integer-overflow vulnerability because it fails to properly bounds check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to cause denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

LibTIFF 4.0.7 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus