← back
CVE-2005-2452

CVE-2005-2452

EPSS 1.9%
libtiff up to 3.7.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in (1) tif_strip.c and (2) tif_tile.c, a different vulnerability than CVE-2004-0804.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.ubuntu.com/show_bug.cgi?id=12008http://secunia.com/advisories/16266http://secunia.com/advisories/16486https://usn.ubuntu.com/156-1/http://www.mandriva.com/security/advisories?name=MDKSA-2005:142http://www.mandriva.com/security/advisories?name=MDKSA-2005:143http://www.mandriva.com/security/advisories?name=MDKSA-2005:144http://www.securityfocus.com/bid/14417