Vulnerability Description
Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image.
CVSS Score
7.8
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Libtiff | Libtiff | 4.0.7 |
Related Weaknesses (CWE)
References
- http://bugzilla.maptools.org/show_bug.cgi?id=2640ExploitIssue Tracking
- http://www.debian.org/security/2017/dsa-3762
- http://www.openwall.com/lists/oss-security/2017/01/01/10Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2017/01/01/12Mailing ListThird Party Advisory
- http://www.securityfocus.com/bid/95214
- https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overf
- https://github.com/vadz/libtiff/commit/c7153361a4041260719b340f73f2f76ExploitPatchThird Party Advisory
- http://bugzilla.maptools.org/show_bug.cgi?id=2640ExploitIssue Tracking
- http://www.debian.org/security/2017/dsa-3762
- http://www.openwall.com/lists/oss-security/2017/01/01/10Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2017/01/01/12Mailing ListThird Party Advisory
- http://www.securityfocus.com/bid/95214
- https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overf
- https://github.com/vadz/libtiff/commit/c7153361a4041260719b340f73f2f76ExploitPatchThird Party Advisory
FAQ
What is CVE-2016-10094?
CVE-2016-10094 is a vulnerability with a CVSS score of 7.8 (HIGH). Off-by-one error in the t2p_readwrite_pdf_image_tile function in tools/tiff2pdf.c in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image.
How severe is CVE-2016-10094?
CVE-2016-10094 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-10094?
Check the references section above for vendor advisories and patch information. Affected products include: Libtiff Libtiff.