CVE-2011-1167
CVE-2011-1167
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://blackberry.com/btsc/KB27244http://bugzilla.maptools.org/show_bug.cgi?id=2300http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2012/May/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2012/Sep/msg00003.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/057763.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/057840.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=684939http://secunia.com/advisories/43900http://secunia.com/advisories/43934http://secunia.com/advisories/43974