Back to search
CVE-2010-1411
Published: Jun 17, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF file that triggers a heap-based buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
APPLE-SA-2010-06-15-1
vendor-advisory
x_refsource_APPLE
http://support.apple.com/kb/HT4220
x_refsource_CONFIRM
FEDORA-2010-10469
vendor-advisory
x_refsource_FEDORA
http://www.remotesensing.org/libtiff/v3.9.3.html
x_refsource_CONFIRM
40181
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1481
vdb-entry
x_refsource_VUPEN
ADV-2010-1731
vdb-entry
x_refsource_VUPEN
40527
third-party-advisory
x_refsource_SECUNIA
40823
vdb-entry
x_refsource_BID
[oss-security] 20100623 CVE requests: LibTIFF
mailing-list
x_refsource_MLIST
ADV-2010-1435
vdb-entry
x_refsource_VUPEN
ADV-2010-1638
vdb-entry
x_refsource_VUPEN
1024103
vdb-entry
x_refsource_SECTRACK
40196
third-party-advisory
x_refsource_SECUNIA
SSA:2010-180-02
vendor-advisory
x_refsource_SLACKWARE
USN-954-1
vendor-advisory
x_refsource_UBUNTU
http://support.apple.com/kb/HT4188
x_refsource_CONFIRM
ADV-2010-1761
vdb-entry
x_refsource_VUPEN
40220
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2010-06-16-1
vendor-advisory
x_refsource_APPLE
GLSA-201209-02
vendor-advisory
x_refsource_GENTOO
RHSA-2010:0520
vendor-advisory
x_refsource_REDHAT
40536
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1512
vdb-entry
x_refsource_VUPEN
FEDORA-2010-10460
vendor-advisory
x_refsource_FEDORA
RHSA-2010:0519
vendor-advisory
x_refsource_REDHAT
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=592361
x_refsource_CONFIRM
40478
third-party-advisory
x_refsource_SECUNIA
http://support.apple.com/kb/HT4196
x_refsource_CONFIRM
40381
third-party-advisory
x_refsource_SECUNIA
50726
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now