CVEs-PoC/2010/CVE-2010-2597.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 02:45:46 +02:00

Files

T

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler optimization that triggers a divide-by-zero error.

POC

Reference

No PoCs from references.

Github

https://github.com/Hwangtaewon/radamsa
https://github.com/StephenHaruna/RADAMSA
https://github.com/nqwang/radamsa
https://github.com/sambacha/mirror-radamsa
https://github.com/sunzu94/radamsa-Fuzzer

966 B Raw Blame History

CVE-2010-2597

Description

POC

Reference

Github

966 B

Raw Blame History