NVD

Id
43938  
Name
CVE-2012-2088  
Description
Integer signedness error in the TIFFReadDirectory function in tif_dirread.c in libtiff 3.9.4 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a negative tile depth in a tiff image, which triggers an improper conversion between signed and unsigned types, leading to a heap-based buffer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2012-07-22  
Modified Date
2014-03-16  
Seq
2012-2088  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
220680 43938 CVE-2012-2088 APPLE-SA-2013-03-14-1  View
220681 43938 CVE-2012-2088 RHSA-2012:1054  View
220682 43938 CVE-2012-2088 GLSA-201209-02  View
220683 43938 CVE-2012-2088 http://support.apple.com/kb/HT6162  View
220684 43938 CVE-2012-2088 http://support.apple.com/kb/HT6163  View
220685 43938 CVE-2012-2088 MDVSA-2012:101  View
220686 43938 CVE-2012-2088 54270  View
220687 43938 CVE-2012-2088 https://bugzilla.redhat.com/show_bug.cgi?id=832864  View
220688 43938 CVE-2012-2088 openSUSE-SU-2012:0829  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27567 JVNDB-2012-003274 libtiff の tif_dirread.c における整数符号エラーの脆弱性 libtiff の tif_dirread.c 内の TIFFReadDirectory 関数には、整数符号エラーの脆弱性が存在します。 CVE-2012-2088 55326 CVE-2012-2088 43938 7.5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003274.html 2012-07-22 2014-03-17 View