Home > Vulnerability Database > CVE-2004-0803

Mend.io Vulnerability Database

CVE-2004-0803

Date: October 25, 2004

Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.

Severity Score

7.3

Related Resources (22)

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2005:052

Url: https://nvd.nist.gov/vuln/detail/CVE-2004-0803

Url: http://www.gentoo.org/security/en/glsa/glsa-200410-11.xml

Url: http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000888

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101677-1

Url: http://marc.info/?l=bugtraq&m=109778785107450&w=2

Url: http://www.redhat.com/support/errata/RHSA-2005-354.html

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-66-201072-1

Url: http://www.redhat.com/support/errata/RHSA-2004-577.html

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8896

Url: http://www.novell.com/linux/security/advisories/2004_38_libtiff.html

Url: http://www.redhat.com/support/errata/RHSA-2005-021.html

Url: http://secunia.com/advisories/12818

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2004:109

Url: http://www.kde.org/info/security/advisory-20041209-2.txt

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/17703

Url: http://www.securityfocus.com/bid/11406

Url: http://www.kb.cert.org/vuls/id/948752

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100114

Url: http://scary.beasts.org/security/CESA-2004-006.txt

Url: http://www.debian.org/security/2004/dsa-567

Url: https://www.mend.io/vulnerability-database/CVE-2004-0803

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2004-0803

Date: October 25, 2004

Severity Score

Related Resources (22)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?