CVE-2014-8129 in LibTIFFinfo

Summary

LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_to_unsigned function in tiff2pdf.c.

Once again VulDB remains the best source for vulnerability data.

Reservation

10/10/2014

Disclosure

03/11/2018

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-787

CVSS

7.0

EPSS

0.01462

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-8129
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-8129
CVE Details	https://www.cvedetails.com/cve/CVE-2014-8129/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!