CVE-2005-1544
published 2005-05-14CVE-2005-1544: Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
14.39%
96.2th percentile
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 3.7.2-3 (bookworm) | tiff 3.7.2-3 (bookworm) |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
TIFF library vulnerability
vendor_ubuntu·2005-05-20
CVE-2005-1544 TIFF library vulnerability
Title: TIFF library vulnerability
Summary: TIFF library vulnerability
Tavis Ormandy discovered a buffer overflow in the TIFF library. A
malicious image with an invalid "bits per sample" number could be
constructed which, when decoded, would have resulted in execution of
arbitrary code with the privileges of the process using the library.
Since this library is used in many applications like "ghostscript" and
the "CUPS" printing system, this vulnerability may lead to remotely
induced privilege escalation.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2005-1544: tiff - Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to e...
vendor_debian·2005·CVSS 7.5
CVE-2005-1544 [HIGH] CVE-2005-1544: tiff - Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to e...
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
Scope: local
bookworm: resolved (fixed in 3.7.2-3)
bullseye: resolved (fixed in 3.7.2-3)
forky: resolved (fixed in 3.7.2-3)
sid: resolved (fixed in 3.7.2-3)
trixie: resolved (fixed in 3.7.2-3)
Red Hat
CVE-2005-1544: Stack-based buffer overflow in libTIFF before 3
vendor_redhat·CVSS 7.5
CVE-2005-1544 [HIGH] CVE-2005-1544: Stack-based buffer overflow in libTIFF before 3
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
Statement: Not vulnerable. This issue did not affect the versions of libtiff as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.
GHSA
GHSA-45px-6f9w-fmpf: Stack-based buffer overflow in libTIFF before 3
ghsa_unreviewed·2022-05-03
CVE-2005-1544 [HIGH] GHSA-45px-6f9w-fmpf: Stack-based buffer overflow in libTIFF before 3
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
OSV
CVE-2005-1544: Stack-based buffer overflow in libTIFF before 3
osv·2005-05-14·CVSS 7.5
CVE-2005-1544 [HIGH] CVE-2005-1544: Stack-based buffer overflow in libTIFF before 3
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
No detection rules found.
No writeups or analysis indexed.
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.3/SCOSA-2006.3.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.34/SCOSA-2005.34.txthttp://bugs.gentoo.org/show_bug.cgi?id=91584http://bugzilla.remotesensing.org/show_bug.cgi?id=843http://secunia.com/advisories/15320http://secunia.com/advisories/16872http://secunia.com/advisories/18289http://secunia.com/advisories/18943http://securitytracker.com/id?1013944http://www.debian.org/security/2005/dsa-755http://www.gentoo.org/security/en/glsa/glsa-200505-07.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:042http://www.osvdb.org/16350http://www.securityfocus.com/bid/13585http://www.ubuntu.com/usn/usn-130-1https://exchange.xforce.ibmcloud.com/vulnerabilities/20533ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.3/SCOSA-2006.3.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.34/SCOSA-2005.34.txthttp://bugs.gentoo.org/show_bug.cgi?id=91584http://bugzilla.remotesensing.org/show_bug.cgi?id=843http://secunia.com/advisories/15320http://secunia.com/advisories/16872http://secunia.com/advisories/18289http://secunia.com/advisories/18943http://securitytracker.com/id?1013944http://www.debian.org/security/2005/dsa-755http://www.gentoo.org/security/en/glsa/glsa-200505-07.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:042http://www.osvdb.org/16350http://www.securityfocus.com/bid/13585http://www.ubuntu.com/usn/usn-130-1https://exchange.xforce.ibmcloud.com/vulnerabilities/20533
2005-05-14
Published