LibTiff 3.x - TIFFFetchData Integer Overflow

Author: Tavis Ormandy
type: dos
platform: linux
port: 
date_added: 2006-04-28 
date_updated: 2013-08-27 
verified: 1 
codes: CVE-2006-2025;OSVDB-25019 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/17732/info

Applications using the LibTIFF library are prone to an integer-overflow vulnerability.

An attacker could exploit this vulnerability to execute arbitrary code in the context of the vulnerable application that uses the affected library. Failed exploit attempts will likely cause denial-of-service conditions.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/27764.tiff.11