LibTIFF Multiple Buffer Overflow Vulnerabilities
BID:104912
Info
LibTIFF Multiple Buffer Overflow Vulnerabilities
| Bugtraq ID: | 104912 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2018-14373 CVE-2018-14374 CVE-2018-14375 CVE-2018-14378 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jul 16 2018 12:00AM |
| Updated: | Jul 16 2018 12:00AM |
| Credit: | Saahil Ognawala |
| Vulnerable: |
LibTIFF LibTIFF 4.0.9 |
| Not Vulnerable: | |
Discussion
LibTIFF Multiple Buffer Overflow Vulnerabilities
LibTIFF is prone to multiple buffer-overflow vulnerabilities.
Attackers can exploit these issues to execute arbitrary code within the context of the affected application. Failed exploits will result in denial-of-service condition.
LibTIFF 4.0.9 is vulnerable; other versions may also be affected.
LibTIFF is prone to multiple buffer-overflow vulnerabilities.
Attackers can exploit these issues to execute arbitrary code within the context of the affected application. Failed exploits will result in denial-of-service condition.
LibTIFF 4.0.9 is vulnerable; other versions may also be affected.
Exploit / POC
LibTIFF Multiple Buffer Overflow Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
LibTIFF Multiple Buffer Overflow Vulnerabilities
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at:[email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at:[email protected].
References
LibTIFF Multiple Buffer Overflow Vulnerabilities
References:
References:
- Bug 2801 - Buffer-overflow vulnerability in TIFFFindField (Maptools)
- Bug 2802 - Buffer-overflow vulnerability in unixErrorHandler (Maptools)
- Bug 2803 - Buffer-overflow vulnerability in TIFFRGBAImageOK (Maptools)
- Bug 2806 - Buffer-overflow vulnerability in TIFFWriteBufferSetup (Maptools)
- LibTIFF Homepage (LibTIFF)