Back to search
CVE-2010-2067
Published: Jun 23, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the TIFFFetchSubjectDistance function in tif_dirread.c in LibTIFF before 3.9.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long EXIF SubjectDistance field in a TIFF file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
40241
third-party-advisory
x_refsource_SECUNIA
http://bugzilla.maptools.org/show_bug.cgi?id=2212
x_refsource_CONFIRM
[oss-security] 20100623 CVE requests: LibTIFF
mailing-list
x_refsource_MLIST
ADV-2010-1638
vdb-entry
x_refsource_VUPEN
SSA:2010-180-02
vendor-advisory
x_refsource_SLACKWARE
65676
vdb-entry
x_refsource_OSVDB
USN-954-1
vendor-advisory
x_refsource_UBUNTU
http://www.remotesensing.org/libtiff/v3.9.4.html
x_refsource_CONFIRM
GLSA-201209-02
vendor-advisory
x_refsource_GENTOO
https://bugzilla.redhat.com/show_bug.cgi?id=599576
x_refsource_CONFIRM
20100621 Multiple Vendor LibTIFF 3.9.2 Stack Buffer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
40381
third-party-advisory
x_refsource_SECUNIA
50726
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now