RETIRED: LibTIFF CVE-2017-7599 Denial of Service Vulnerability

LibTIFF is prone to a denial-of-service vulnerability.

Attackers can exploit this issue to crash the affected application, resulting in a denial-of-service condition.

LibTIFF 4.0.7 is vulnerable; other versions may also be vulnerable. Retired as a duplicate of BID 97508 LibTIFF CVE-2017-7599 Denial of Service Vulnerability.


Bugtraq ID: 97505
Class: Design Error
CVE: CVE-2017-7599

Remote: Yes
Local: No
Published: Apr 09 2017 12:00AM
Updated: Apr 15 2019 07:00PM
Credit: Agostino Sarubbo of Gentoo.
Vulnerable: LibTIFF LibTIFF 4.0.7

Not Vulnerable:


The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

Related Posts