Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service (heap-based buffer over-read), or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Silicon Graphics LibTIFF 整数溢出漏洞
Vulnerability Description
Silicon Graphics LibTIFF是美国Silicon Graphics公司的一个读写TIFF(标签图像文件格式)文件的库。该库包含一些处理TIFF文件的命令行工具。 Silicon Graphics LibTIFF 4.0.4之前版本中的tools/bmp2tiff.c文件存在整数溢出漏洞。远程攻击者可借助在RLE4或RLE8数据中特制的长度值和宽度值利用该漏洞造成拒绝服务(基于堆的缓存区越边界读取)或获取进程内存中的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A