National Vulnerability Database (NVD) National Vulnerability Database (CVE-2004-0886)

National Cyber-Alert System

Vulnerability Summary for CVE-2004-0886

Original release date:01/27/2005

Last revised:02/05/2009

Source: US-CERT/NIST

Overview

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:N/I:N/A:P) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Vulnerability Note: VU#687568

Name: VU#687568

Hyperlink:http://www.kb.cert.org/vuls/id/687568

External Source: BID

Name: 11406

Type: Advisory; Patch Information

Hyperlink:http://www.securityfocus.com/bid/11406

External Source: REDHAT

Name: RHSA-2004:577

Type: Advisory; Patch Information

Hyperlink:http://www.redhat.com/support/errata/RHSA-2004-577.html

External Source: XF

Name: libtiff-bo(17715)

Type: Advisory

Hyperlink:http://xforce.iss.net/xforce/xfdb/17715

External Source: TRUSTIX

Name: 2004-0054

Hyperlink:http://www.trustix.org/errata/2004/0054/

External Source: REDHAT

Name: RHSA-2005:354

Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-354.html

External Source: SUSE

Name: SUSE-SA:2004:038

Hyperlink:http://www.novell.com/linux/security/advisories/2004_38_libtiff.html

External Source: CONFIRM

Name: http://www.kde.org/info/security/advisory-20041209-2.txt

Hyperlink:http://www.kde.org/info/security/advisory-20041209-2.txt

External Source: DEBIAN

Name: DSA-567

Hyperlink:http://www.debian.org/security/2004/dsa-567

External Source: CIAC

Name: P-015

Hyperlink:http://www.ciac.org/ciac/bulletins/p-015.shtml

External Source: SUNALERT

Name: 201072

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-66-201072-1

External Source: SECTRACK

Name: 1011674

Hyperlink:http://securitytracker.com/id?1011674

External Source: SECUNIA

Name: 12818

Hyperlink:http://secunia.com/advisories/12818

External Source: REDHAT

Name: RHSA-2005:021

Hyperlink:http://www.redhat.com/support/errata/RHSA-2005-021.html

External Source: MANDRAKE

Name: MDKSA-2005:052

Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2005:052

External Source: MANDRAKE

Name: MDKSA-2004:109

Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2004:109

External Source: SUNALERT

Name: 101677

Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-26-101677-1

External Source: OPENPKG

Name: OpenPKG-SA-2004.043

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=109779465621929&w=2

External Source: CONECTIVA

Name: CLA-2004:888

Hyperlink:http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000888

US Government Resource: oval:org.mitre.oval:def:100116

Name: oval:org.mitre.oval:def:100116

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100116

Vulnerable software and versions

Configuration 1

* cpe:/a:libtiff:libtiff:3.4

* cpe:/a:libtiff:libtiff:3.5.1

* cpe:/a:libtiff:libtiff:3.5.2

* cpe:/a:libtiff:libtiff:3.5.3

* cpe:/a:libtiff:libtiff:3.5.4

* cpe:/a:libtiff:libtiff:3.5.5

* cpe:/a:libtiff:libtiff:3.5.7

* cpe:/a:libtiff:libtiff:3.6.0

* cpe:/a:libtiff:libtiff:3.6.1

* cpe:/a:pdflib:pdf_library:5.0.2

* cpe:/a:wxgtk2:wxgtk2

* cpe:/a:wxgtk2:wxgtk2:2.5_.0

Configuration 2

* cpe:/o:apple:mac_os_x:10.2

* cpe:/o:apple:mac_os_x:10.2.1

* cpe:/o:apple:mac_os_x:10.2.2

* cpe:/o:apple:mac_os_x:10.2.3

* cpe:/o:apple:mac_os_x:10.2.4

* cpe:/o:apple:mac_os_x:10.2.5

* cpe:/o:apple:mac_os_x:10.2.6

* cpe:/o:apple:mac_os_x:10.2.7

* cpe:/o:apple:mac_os_x:10.2.8

* cpe:/o:apple:mac_os_x:10.3

* cpe:/o:apple:mac_os_x:10.3.1

* cpe:/o:apple:mac_os_x:10.3.2

* cpe:/o:apple:mac_os_x:10.3.3

* cpe:/o:apple:mac_os_x:10.3.4

* cpe:/o:apple:mac_os_x:10.3.5

* cpe:/o:apple:mac_os_x:10.3.6

* cpe:/o:apple:mac_os_x_server:10.2

* cpe:/o:apple:mac_os_x_server:10.2.1

* cpe:/o:apple:mac_os_x_server:10.2.2

* cpe:/o:apple:mac_os_x_server:10.2.3

* cpe:/o:apple:mac_os_x_server:10.2.4

* cpe:/o:apple:mac_os_x_server:10.2.5

* cpe:/o:apple:mac_os_x_server:10.2.6

* cpe:/o:apple:mac_os_x_server:10.2.7

* cpe:/o:apple:mac_os_x_server:10.2.8

* cpe:/o:apple:mac_os_x_server:10.3

* cpe:/o:apple:mac_os_x_server:10.3.1

* cpe:/o:apple:mac_os_x_server:10.3.2

* cpe:/o:apple:mac_os_x_server:10.3.3

* cpe:/o:apple:mac_os_x_server:10.3.4

* cpe:/o:apple:mac_os_x_server:10.3.5

* cpe:/o:apple:mac_os_x_server:10.3.6

* cpe:/o:kde:kde:3.2

* cpe:/o:kde:kde:3.2.1

* cpe:/o:kde:kde:3.2.2

* cpe:/o:kde:kde:3.2.3

* cpe:/o:kde:kde:3.3

* cpe:/o:kde:kde:3.3.1

* cpe:/o:mandrakesoft:mandrake_linux:10.0

* cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64

* cpe:/o:redhat:enterprise_linux:2.1::advanced_server

* cpe:/o:redhat:enterprise_linux:2.1::advanced_server_ia64

* cpe:/o:redhat:enterprise_linux:2.1::enterprise_server

* cpe:/o:redhat:enterprise_linux:2.1::enterprise_server_ia64

* cpe:/o:redhat:enterprise_linux:2.1::workstation

* cpe:/o:redhat:enterprise_linux:2.1::workstation_ia64

* cpe:/o:redhat:enterprise_linux:3.0::advanced_server

* cpe:/o:redhat:enterprise_linux:3.0::enterprise_server

* cpe:/o:redhat:enterprise_linux:3.0::workstation_server

* cpe:/o:redhat:enterprise_linux_desktop:3.0

* cpe:/o:redhat:fedora_core:core_2.0

* cpe:/o:redhat:linux_advanced_workstation:2.1::ia64

* cpe:/o:redhat:linux_advanced_workstation:2.1::itanium_processor

* cpe:/o:suse:suse_linux:1.0::desktop

* cpe:/o:suse:suse_linux:8.1

* cpe:/o:suse:suse_linux:8.2

* cpe:/o:suse:suse_linux:8::enterprise_server

* cpe:/o:suse:suse_linux:9.0

* cpe:/o:suse:suse_linux:9.0::enterprise_server

* cpe:/o:suse:suse_linux:9.1

* cpe:/o:trustix:secure_linux:1.5

* cpe:/o:trustix:secure_linux:2.0

* cpe:/o:trustix:secure_linux:2.1

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0886