CVE-2008-2327
Last modified
CVE-2008-2327 is a vulnerability of currently unknown severity. Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.. EPSS estimates a 4.13% chance of exploitation in the next 30 days.
Description
Multiple buffer underflows in the (1) LZWDecode, (2) LZWDecodeCompat, and (3) LZWDecodeVector functions in tif_lzw.c in the LZW decoder in LibTIFF 3.8.2 and earlier allow context-dependent attackers to execute arbitrary code via a crafted TIFF file, related to improper handling of the CODE_CLEAR code.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Libtiff | Libtiff | <= 3.8.2 |
| Libtiff | Libtiff | 3.4 |
| Libtiff | Libtiff | 3.5.1 |
| Libtiff | Libtiff | 3.5.2 |
| Libtiff | Libtiff | 3.5.3 |
| Libtiff | Libtiff | 3.5.4 |
| Libtiff | Libtiff | 3.5.5 |
| Libtiff | Libtiff | 3.5.6 |
| Libtiff | Libtiff | 3.5.7 |
| Libtiff | Libtiff | 3.6.0 |
| Libtiff | Libtiff | 3.6.1 |
| Libtiff | Libtiff | 3.7.0 |
| Libtiff | Libtiff | 3.7.1 |
| Libtiff | Libtiff | 3.8.0 |
| Libtiff | Libtiff | 3.8.1 |
References
- http://secunia.com/advisories/31610Vendor Advisory
- http://secunia.com/advisories/31623Vendor Advisory
- http://secunia.com/advisories/31668Vendor Advisory
- http://secunia.com/advisories/31670Vendor Advisory
- http://secunia.com/advisories/31698Vendor Advisory
- http://secunia.com/advisories/31838Vendor Advisory
- http://secunia.com/advisories/31882Vendor Advisory
- http://secunia.com/advisories/32756Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0848.htmlVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0863.htmlVendor Advisory
- http://www.us-cert.gov/cas/techalerts/TA08-260A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2008/2438Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2584Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2776Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2971Vendor Advisory
- http://www.vupen.com/english/advisories/2008/3107Vendor Advisory
- http://www.vupen.com/english/advisories/2009/2143Vendor Advisory
- http://secunia.com/advisories/31610Vendor Advisory
- http://secunia.com/advisories/31623Vendor Advisory
- http://secunia.com/advisories/31668Vendor Advisory
- http://secunia.com/advisories/31670Vendor Advisory
- http://secunia.com/advisories/31698Vendor Advisory
- http://secunia.com/advisories/31838Vendor Advisory
- http://secunia.com/advisories/31882Vendor Advisory
- http://secunia.com/advisories/32756Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0848.htmlVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2008-0863.htmlVendor Advisory
- http://www.us-cert.gov/cas/techalerts/TA08-260A.htmlUS Government Resource
- http://www.vupen.com/english/advisories/2008/2438Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2584Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2776Vendor Advisory
- http://www.vupen.com/english/advisories/2008/2971Vendor Advisory
- http://www.vupen.com/english/advisories/2008/3107Vendor Advisory
- http://www.vupen.com/english/advisories/2009/2143Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-2327?
How severe is CVE-2008-2327?
How do I fix CVE-2008-2327?
Are you affected by CVE-2008-2327?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST