CVE-2004-1307

Description

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.

Affected (68)

Products: Avaya: Call Management System Server, Cvlan, Integrated Management, Interactive Response, Intuity Audix Lx, Mn100, Modular Messaging Message Storage Server · Conectiva: Linux · F5: Icontrol Service Manager · +7 more

Show all products

Avaya

7 products

Call Management System Server

Cvlan

Integrated Management

Interactive Response

Intuity Audix Lx

Mn100

Modular Messaging Message Storage Server

Conectiva

1 product

Linux

F5

1 product

Icontrol Service Manager

1 product

1 product

2 products

1 product

2 products

Mandrake Linux Corporate Server

1 product

2 products

Configuration A

28 vulnerable

Vulnerable Software	Affected Versions
Avaya Call Management System Server	Version 11.0
Avaya Call Management System Server	Version 12.0
Avaya Call Management System Server	Version 13.0
Avaya Call Management System Server	Version 8.0
Avaya Call Management System Server	Version 9.0
Avaya Cvlan	All versions
Avaya Integrated Management	All versions
Avaya Interactive Response	All versions
Avaya Interactive Response	Version 1.2.1
Avaya Interactive Response	Version 1.3
Avaya Intuity Audix Lx	All versions
Conectiva Linux	Version 10.0
Conectiva Linux	Version 9.0
F5 Icontrol Service Manager	Version 1.3.4
F5 Icontrol Service Manager	Version 1.3.5
F5 Icontrol Service Manager	Version 1.3.6
F5 Icontrol Service Manager	Version 1.3
Libtiff Libtiff	Version 3.4
Libtiff Libtiff	Version 3.5.1
Libtiff Libtiff	Version 3.5.2
Libtiff Libtiff	Version 3.5.3
Libtiff Libtiff	Version 3.5.4
Libtiff Libtiff	Version 3.5.5
Libtiff Libtiff	Version 3.5.7
Libtiff Libtiff	Version 3.6.0
Libtiff Libtiff	Version 3.6.1
Libtiff Libtiff	Version 3.7.0
Sgi Propack	Version 3.0

Configuration B

40 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.3.1
Apple Mac Os X	Version 10.3.2
Apple Mac Os X	Version 10.3.3
Apple Mac Os X	Version 10.3.4
Apple Mac Os X	Version 10.3.5
Apple Mac Os X	Version 10.3.6
Apple Mac Os X	Version 10.3.7
Apple Mac Os X	Version 10.3.8
Apple Mac Os X	Version 10.3.9
Apple Mac Os X	Version 10.3
Apple Mac Os X Server	Version 10.3.1
Apple Mac Os X Server	Version 10.3.2
Apple Mac Os X Server	Version 10.3.3
Apple Mac Os X Server	Version 10.3.4
Apple Mac Os X Server	Version 10.3.5
Apple Mac Os X Server	Version 10.3.6
Apple Mac Os X Server	Version 10.3.7
Apple Mac Os X Server	Version 10.3.8
Apple Mac Os X Server	Version 10.3.9
Apple Mac Os X Server	Version 10.3
Avaya Mn100	All versions
Avaya Modular Messaging Message Storage Server	Version 1.1
Avaya Modular Messaging Message Storage Server	Version 2.0
Gentoo Linux	All versions
Mandrakesoft Mandrake Linux	Version 10.0
Mandrakesoft Mandrake Linux	Version 10.0
Mandrakesoft Mandrake Linux	Version 10.1
Mandrakesoft Mandrake Linux	Version 10.1
Mandrakesoft Mandrake Linux Corporate Server	Version 3.0
Mandrakesoft Mandrake Linux Corporate Server	Version 3.0
Sco Unixware	Version 7.1.4
Sun Solaris	Version 10.0
Sun Solaris	Version 10.0
Sun Solaris	Version 7.0
Sun Solaris	Version 8.0
Sun Solaris	Version 9.0
Sun Solaris	Version 9.0
Sun Solaris	Version 9.0 x86_update_2
Sun Sunos	Version 5.7
Sun Sunos	Version 5.8