FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0803

This CVE name corresponds to:

Entered Topic
2004-10-13 tiff -- RLE decoder heap overflows

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2004-0803 at cve.mitre.org

Details

Type Candidate
Name CVE-2004-0803
Phase Assigned(20040825)

Description

Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.

References

Source Reference
BUGTRAQ 20041013 CESA-2004-006: libtiff
MISC http://scary.beasts.org/security/CESA-2004-006.txt
CONFIRM http://www.kde.org/info/security/advisory-20041209-2.txt
CONECTIVA CLA-2004:888
DEBIAN DSA-567
GENTOO GLSA-200410-11
MANDRAKE MDKSA-2004:109
MANDRAKE MDKSA-2005:052
REDHAT RHSA-2004:577
REDHAT RHSA-2005:354
REDHAT RHSA-2005:021
SUNALERT 101677
SUNALERT 201072
SUSE SUSE-SA:2004:038
CERT-VN VU#948752
BID 11406
OVAL oval:org.mitre.oval:def:100114
OVAL oval:org.mitre.oval:def:8896
SECUNIA 12818
XF libtiff-library-decoding-bo(17703)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.