Computer Security

libtiff memory corruption
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



libtiff memory corruption
Published:04.09.2008
Source:BUGTRAQ
SecurityVulns ID:9262
Type:library
Level:6/10
Description:Memory corruption on LZW decoding.
Affected:LIBTIFF : libtiff 3.8
CVE:CVE-2008-2327 (Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:184 ] libtiff (04.09.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server