QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-1173

Back to search

CVE-2012-1173

Published: Jun 4, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple integer overflows in tiff_getimage.c in LibTIFF 3.9.4 allow remote attackers to execute arbitrary code via a crafted tile size in a TIFF file, which is not properly handled by the (1) gtTileSeparate or (2) gtStripSeparate function, leading to a heap-based buffer overflow.

VendorProductVersions

n/a

n/a

affected
n/a

References

FEDORA-2012-5410
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2012:0539
vendor-advisory
x_refsource_SUSE
APPLE-SA-2012-09-19-1
vendor-advisory
x_refsource_APPLE
48722
third-party-advisory
x_refsource_SECUNIA
FEDORA-2012-5463
vendor-advisory
x_refsource_FEDORA
81025
vdb-entry
x_refsource_OSVDB
RHSA-2012:0468
vendor-advisory
x_refsource_REDHAT
48893
third-party-advisory
x_refsource_SECUNIA
1026895
vdb-entry
x_refsource_SECTRACK
libtiff-gttileseparate-bo(74656)
vdb-entry
x_refsource_XF
48757
third-party-advisory
x_refsource_SECUNIA
FEDORA-2012-5406
vendor-advisory
x_refsource_FEDORA
52891
vdb-entry
x_refsource_BID
GLSA-201209-02
vendor-advisory
x_refsource_GENTOO
APPLE-SA-2012-09-19-2
vendor-advisory
x_refsource_APPLE
MDVSA-2012:054
vendor-advisory
x_refsource_MANDRIVA
USN-1416-1
vendor-advisory
x_refsource_UBUNTU
DSA-2447
vendor-advisory
x_refsource_DEBIAN
48735
third-party-advisory
x_refsource_SECUNIA
48684
third-party-advisory
x_refsource_SECUNIA
50726
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now