CVE-2004-0803
 
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.
Múltiples vulnerabilidades en los decodificadores RLE (run length encoding) de libtiff 3.6.1 y anteriores, relacionadas con desbordamientos de enteros y de búfer, permite a atacantes remotos ejecutar código arbitrario mediante ficheros TIFF.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2004-08-25 CVE Reserved
- 2004-10-20 CVE Published
- 2024-08-08 CVE Updated
- 2024-11-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (22)
URL | Tag | Source |
---|---|---|
http://marc.info/?l=bugtraq&m=109778785107450&w=2 | Mailing List | |
http://scary.beasts.org/security/CESA-2004-006.txt | X_refsource_misc | |
http://secunia.com/advisories/12818 | Third Party Advisory | |
http://www.kb.cert.org/vuls/id/948752 | Third Party Advisory | |
http://www.kde.org/info/security/advisory-20041209-2.txt | X_refsource_confirm | |
http://www.securityfocus.com/bid/11406 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17703 | Vdb Entry | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100114 | Signature | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8896 | Signature |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.debian.org/security/2004/dsa-567 | 2017-10-11 | |
http://www.redhat.com/support/errata/RHSA-2004-577.html | 2017-10-11 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.4 Search vendor "Libtiff" for product "Libtiff" and version "3.4" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.1 Search vendor "Libtiff" for product "Libtiff" and version "3.5.1" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.2 Search vendor "Libtiff" for product "Libtiff" and version "3.5.2" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.3 Search vendor "Libtiff" for product "Libtiff" and version "3.5.3" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.4 Search vendor "Libtiff" for product "Libtiff" and version "3.5.4" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.5 Search vendor "Libtiff" for product "Libtiff" and version "3.5.5" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.5.7 Search vendor "Libtiff" for product "Libtiff" and version "3.5.7" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.6.0 Search vendor "Libtiff" for product "Libtiff" and version "3.6.0" | - |
Affected
| ||||||
Libtiff Search vendor "Libtiff" | Libtiff Search vendor "Libtiff" for product "Libtiff" | 3.6.1 Search vendor "Libtiff" for product "Libtiff" and version "3.6.1" | - |
Affected
| ||||||
Pdflib Search vendor "Pdflib" | Pdf Library Search vendor "Pdflib" for product "Pdf Library" | 5.0.2 Search vendor "Pdflib" for product "Pdf Library" and version "5.0.2" | - |
Affected
| ||||||
Wxgtk2 Search vendor "Wxgtk2" | Wxgtk2 Search vendor "Wxgtk2" for product "Wxgtk2" | 2.5_.0 Search vendor "Wxgtk2" for product "Wxgtk2" and version "2.5_.0" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2 Search vendor "Apple" for product "Mac Os X" and version "10.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.1 Search vendor "Apple" for product "Mac Os X" and version "10.2.1" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.2 Search vendor "Apple" for product "Mac Os X" and version "10.2.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.3 Search vendor "Apple" for product "Mac Os X" and version "10.2.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.4 Search vendor "Apple" for product "Mac Os X" and version "10.2.4" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.5 Search vendor "Apple" for product "Mac Os X" and version "10.2.5" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.6 Search vendor "Apple" for product "Mac Os X" and version "10.2.6" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.7 Search vendor "Apple" for product "Mac Os X" and version "10.2.7" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.2.8 Search vendor "Apple" for product "Mac Os X" and version "10.2.8" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3 Search vendor "Apple" for product "Mac Os X" and version "10.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.1 Search vendor "Apple" for product "Mac Os X" and version "10.3.1" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.2 Search vendor "Apple" for product "Mac Os X" and version "10.3.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.3 Search vendor "Apple" for product "Mac Os X" and version "10.3.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.4 Search vendor "Apple" for product "Mac Os X" and version "10.3.4" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.5 Search vendor "Apple" for product "Mac Os X" and version "10.3.5" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.3.6 Search vendor "Apple" for product "Mac Os X" and version "10.3.6" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.1 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.1" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.4" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.5 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.5" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.6 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.6" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.7 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.7" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.2.8 Search vendor "Apple" for product "Mac Os X Server" and version "10.2.8" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.1 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.1" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.2" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.3" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.4" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.5 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.5" | - |
Affected
| ||||||
Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.3.6 Search vendor "Apple" for product "Mac Os X Server" and version "10.3.6" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.2 Search vendor "Kde" for product "Kde" and version "3.2" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.2.1 Search vendor "Kde" for product "Kde" and version "3.2.1" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.2.2 Search vendor "Kde" for product "Kde" and version "3.2.2" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.2.3 Search vendor "Kde" for product "Kde" and version "3.2.3" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.3 Search vendor "Kde" for product "Kde" and version "3.3" | - |
Affected
| ||||||
Kde Search vendor "Kde" | Kde Search vendor "Kde" for product "Kde" | 3.3.1 Search vendor "Kde" for product "Kde" and version "3.3.1" | - |
Affected
| ||||||
Mandrakesoft Search vendor "Mandrakesoft" | Mandrake Linux Search vendor "Mandrakesoft" for product "Mandrake Linux" | 10.0 Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.0" | - |
Affected
| ||||||
Mandrakesoft Search vendor "Mandrakesoft" | Mandrake Linux Search vendor "Mandrakesoft" for product "Mandrake Linux" | 10.0 Search vendor "Mandrakesoft" for product "Mandrake Linux" and version "10.0" | amd64 |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | advanced_server |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | advanced_server_ia64 |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | enterprise_server |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | enterprise_server_ia64 |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | workstation |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 2.1 Search vendor "Redhat" for product "Enterprise Linux" and version "2.1" | workstation_ia64 |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 3.0 Search vendor "Redhat" for product "Enterprise Linux" and version "3.0" | advanced_servers |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 3.0 Search vendor "Redhat" for product "Enterprise Linux" and version "3.0" | enterprise_server |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Search vendor "Redhat" for product "Enterprise Linux" | 3.0 Search vendor "Redhat" for product "Enterprise Linux" and version "3.0" | workstation |
Affected
| ||||||
Redhat Search vendor "Redhat" | Enterprise Linux Desktop Search vendor "Redhat" for product "Enterprise Linux Desktop" | 3.0 Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "3.0" | - |
Affected
| ||||||
Redhat Search vendor "Redhat" | Fedora Core Search vendor "Redhat" for product "Fedora Core" | core_2.0 Search vendor "Redhat" for product "Fedora Core" and version "core_2.0" | - |
Affected
| ||||||
Redhat Search vendor "Redhat" | Linux Advanced Workstation Search vendor "Redhat" for product "Linux Advanced Workstation" | 2.1 Search vendor "Redhat" for product "Linux Advanced Workstation" and version "2.1" | ia64 |
Affected
| ||||||
Redhat Search vendor "Redhat" | Linux Advanced Workstation Search vendor "Redhat" for product "Linux Advanced Workstation" | 2.1 Search vendor "Redhat" for product "Linux Advanced Workstation" and version "2.1" | itanium_processor |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 1.0 Search vendor "Suse" for product "Suse Linux" and version "1.0" | desktop |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 8 Search vendor "Suse" for product "Suse Linux" and version "8" | enterprise_server |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 8.1 Search vendor "Suse" for product "Suse Linux" and version "8.1" | - |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 8.2 Search vendor "Suse" for product "Suse Linux" and version "8.2" | - |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 9.0 Search vendor "Suse" for product "Suse Linux" and version "9.0" | - |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 9.0 Search vendor "Suse" for product "Suse Linux" and version "9.0" | enterprise_server |
Affected
| ||||||
Suse Search vendor "Suse" | Suse Linux Search vendor "Suse" for product "Suse Linux" | 9.1 Search vendor "Suse" for product "Suse Linux" and version "9.1" | - |
Affected
| ||||||
Trustix Search vendor "Trustix" | Secure Linux Search vendor "Trustix" for product "Secure Linux" | 1.5 Search vendor "Trustix" for product "Secure Linux" and version "1.5" | - |
Affected
| ||||||
Trustix Search vendor "Trustix" | Secure Linux Search vendor "Trustix" for product "Secure Linux" | 2.0 Search vendor "Trustix" for product "Secure Linux" and version "2.0" | - |
Affected
| ||||||
Trustix Search vendor "Trustix" | Secure Linux Search vendor "Trustix" for product "Secure Linux" | 2.1 Search vendor "Trustix" for product "Secure Linux" and version "2.1" | - |
Affected
|