(Sun Issues Fix for Solaris) LibTIFF Multiple Bugs Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1019008 |
|
SecurityTracker URL: http://securitytracker.com/id/1019008
|
|
CVE Reference:
CVE-2006-3459, CVE-2006-3460, CVE-2006-3461, CVE-2006-3462, CVE-2006-3463, CVE-2006-3464, CVE-2006-3465
(Links to External Site)
|
Date: Nov 29 2007
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 3.7.2
|
Description:
A vulnerability was reported in LibTIFF. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create a specially crafted TIFF file that, when processed by the target user with an application linked with LibTIFF, will execute arbitrary code on the target system. The code will run with the privileges of the target user or application.
Tavis Ormandy of Google discovered these vulnerabilities.
|
Impact:
A remote user can create a TIFF file that, when loaded by the target user, will execute arbitrary code on the target user's system.
|
Solution:
Sun has issued the following fixes.
SPARC Platform
* Solaris 10 with patch 119900-04 or later
x86 Platform
* Solaris 10 with patch 119901-04 or later
A solution for Solaris 8 and 9 is pending.
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103160-1
|
Vendor URL: libtiff.org/ (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Wed, 28 Nov 2007 22:25:38 -0500
Subject: Security Vulnerabilities in libtiff(3) May Allow Denial of Service (DoS) or Privilege Elevation
|
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103160-1
CVE-2006-2193
CVE-2006-3459
CVE-2006-3460
CVE-2006-3461
CVE-2006-3462
CVE-2006-3463
CVE-2006-3464
CVE-2006-3465
|
|
