CVE Reference: CVE-2010-2065

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-2065

Description:
Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow.

CVE Status:
Candidate

References:

UBUNTU
  http://www.ubuntu.com/usn/USN-954-1

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.596424

SAID
  Secunia Advisory: SA40381
  Secunia Advisory: SA50726
  Secunia Advisory: SA40181

MLIST
  http://marc.info/?l=oss-security&m=127731610612908&w=2

MISC
  http://www.remotesensing.org/libtiff/v3.9.3.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:043

GENTOO
  http://security.gentoo.org/glsa/glsa-201209-02.xml

CONFIRM
  http://blogs.sun.com/security/entry/cve_2010_2065_cve_2010


Return to the previous page.