Libtiff · Libtiff · CVE-2004-0886
Name of the Vulnerable Software and Affected Versions:
libtiff versions 3.6.1 and earlier
Description:
The issue is related to multiple integer overflows that can be triggered by remote attackers using specially crafted TIFF images. This can lead to a denial of service, resulting in a crash or memory corruption due to incorrect malloc calls.
Recommendations:
For libtiff versions 3.6.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.