CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 15:15:46 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
b0e96c877abb080d7cf221c036336480ff266ccf
CVEs-PoC/2017/CVE-2017-9935.md
T
0xMarcio 48a00929ac Removed duplicates
2024-06-18 02:51:15 +02:00

20 lines
1000 B
Markdown
Raw Blame History

### [CVE-2017-9935](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9935)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2p_free, memory corruption in t2p_readwrite_pdf_image, or a double free in t2p_free. Given these possibilities, it probably could cause arbitrary code execution.
### POC
#### Reference
- http://bugzilla.maptools.org/show_bug.cgi?id=2704
- https://usn.ubuntu.com/3606-1/
#### Github
- https://github.com/project-zot/project-zot.github.io
- https://github.com/project-zot/zot
Reference in New Issue View Git Blame Copy Permalink