Detections
Analytics
FreeBSD : tiff -- divide-by-zero denial-of-service (b58ff497-6977-11d9-ae49-000c41e2cdad)
medium Nessus Plugin ID 19090
Synopsis
The remote FreeBSD host is missing one or more security-related updates.Description
A US-CERT vulnerability note reports :An Integer overflow in the LibTIFF library may allow a remote attacker to cause a divide-by-zero error that results in a denial-of-service condition.
Solution
Update the affected packages.See Also
Plugin Details
Severity: Medium
ID: 19090
File Name: freebsd_pkg_b58ff497697711d9ae49000c41e2cdad.nasl
Version: 1.19
Type: local
Family: FreeBSD Local Security Checks
Published: 7/13/2005
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.7
CVSS v2
Risk Factor: Medium
Base Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:fractorama, p-cpe:/a:freebsd:freebsd:gdal, p-cpe:/a:freebsd:freebsd:iv, p-cpe:/a:freebsd:freebsd:ivtools, p-cpe:/a:freebsd:freebsd:ja-iv, p-cpe:/a:freebsd:freebsd:ja-libimg, p-cpe:/a:freebsd:freebsd:linux-tiff, p-cpe:/a:freebsd:freebsd:paraview, p-cpe:/a:freebsd:freebsd:pdflib, p-cpe:/a:freebsd:freebsd:pdflib-perl, p-cpe:/a:freebsd:freebsd:tiff, cpe:/o:freebsd:freebsd
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Patch Publication Date: 1/18/2005
Vulnerability Publication Date: 3/27/2002
Reference Information
CVE: CVE-2004-0804
CERT: 555304