CVE-2011-1167
EPSS 5.5%發布日:2011/3/28修改日:2026/4/28
描述
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data in a .tiff file that has an unexpected BitsPerSample value.
受影響套件(1)
- Debian/tifffrom 0, < 3.9.4-9