#VU11500 Resource exhaustion in LibTIFF - CVE-2018-5784

Cybersecurity Help s.r.o.

Published: 2018-04-03

Vulnerability identifier: #VU11500

Vulnerability risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-5784

CWE-ID: CWE-400

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
LibTIFF
Universal components / Libraries / Libraries used by multiple products

Vendor: LibTIFF

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists in the TIFFSetDirectory function of tif_dir.c due to the declared number of directory entries is not validated against the actual number of directory entries. A remote attacker can submit a specially crafted tif file, trigger resource exhaustion and cause the service to crash.

Mitigation
Install update from vendor's website.

Vulnerable software versions

LibTIFF: 4.0.9

External links
https://bugzilla.maptools.org/show_bug.cgi?id=2772

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Debian update for tiff

Arch Linux update for lib32-libtiff

Resource exhaustion in tiff (Alpine package)

Multiple vulnerabilities in LibTIFF