Summary
This host is installed with LibTIFF and is prone to buffer underflow vulnerability.
Impact
A remote attacker could exploit this issue to execute arbitrary code or to crash the affected application.
Impact level: System/Application
Solution
Apply the patches available.
http://bugzilla.maptools.org/attachment.cgi?id=314
Insight
The flaw is due to buffer underflow error in the 'LZWDecodeCompat()' [libtiff/tif_lzw.c] function when processing malicious TIFF images.
Affected
LibTIFF versions 3.x
References
Severity
Classification
-
CVE CVE-2009-2285 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N
Related Vulnerabilities