Lucene search
PRIOn knowledge basePRION:CVE-2012-5581HistoryJan 04, 2013 - 10:55 p.m.
Stack overflow
2013-01-0422:55:00
PRIOn knowledge base
www.prio-n.com
7
Stack-based buffer overflow in tif_dir.c in LibTIFF before 4.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DOTRANGE tag in a TIFF image.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libtiff | eq | 3.4 beta29 | |
| libtiff | eq | 3.7.0 beta | |
| libtiff | eq | 4.0 alpha | |
| libtiff | eq | 3.6.0 beta2 | |
| libtiff | eq | 3.4 beta34 | |
| libtiff | eq | 3.6.1 | |
| libtiff | eq | 3.6.0 beta | |
| libtiff | eq | 3.8.0 | |
| libtiff | eq | 3.7.3 | |
| libtiff | eq | 3.4 beta32 |
References
lists.opensuse.org/opensuse-updates/2013-01/msg00076.html
rhn.redhat.com/errata/RHSA-2012-1590.html
secunia.com/advisories/51491
www.debian.org/security/2012/dsa-2589
www.openwall.com/lists/oss-security/2012/11/28/1
www.securityfocus.com/bid/56715
www.ubuntu.com/usn/USN-1655-1
bugzilla.redhat.com/show_bug.cgi?id=867235
exchange.xforce.ibmcloud.com/vulnerabilities/80339
Related
securityvulns
securityvulns
libtiff library DoS
2012-12-07 00:00:00
[USN-1655-1] LibTIFF vulnerability
2012-12-07 00:00:00
debian
debian
[SECURITY] [DSA 2589-1] tiff security update
2012-12-16 16:04:53
openvas
openvas
Debian: Security Advisory (DSA-2589-1)
2013-09-18 00:00:00
Mandriva Update for libtiff MDVSA-2012:184 (libtiff)
2012-12-31 00:00:00
Ubuntu Update for tiff USN-1655-1
2012-12-06 00:00:00
nessus
nessus
Oracle Solaris Third-Party Patch Update : libtiff (cve_2012_5581_denial_of)
2015-01-19 00:00:00
Debian DSA-2589-1 : tiff - buffer overflow
2012-12-17 00:00:00
Mandriva Linux Security Advisory : libtiff (MDVSA-2012:184)
2012-12-28 00:00:00
ubuntucve
ubuntucve
CVE-2012-5581
2012-11-28 00:00:00
nvd
nvd
CVE-2012-5581
2013-01-04 22:55:02
debiancve
debiancve
CVE-2012-5581
2013-01-04 22:55:02
cve
cve
CVE-2012-5581
2013-01-04 22:55:02
cvelist
cvelist
CVE-2012-5581
2013-01-04 22:00:00
ubuntu
ubuntu
LibTIFF vulnerability
2012-12-05 00:00:00
veracode
veracode
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
oraclelinux
oraclelinux
libtiff security update
2012-12-18 00:00:00
amazon
amazon
Medium: libtiff
2012-12-20 13:55:00
fedora
fedora
[SECURITY] Fedora 18 Update: libtiff-4.0.3-2.fc18
2013-01-12 00:28:00
[SECURITY] Fedora 18 Update: libtiff-4.0.3-6.fc18
2013-05-14 01:23:41
[SECURITY] Fedora 17 Update: libtiff-3.9.7-1.fc17
2012-12-31 03:28:09
centos
centos
libtiff security update
2012-12-19 01:20:39
redhat
redhat
(RHSA-2012:1590) Moderate: libtiff security update
2012-12-18 00:00:00