Intrusion Prevention

LibTIFF.Tiffcrop.Integer.Overflow

Description

This indicates an attempt to exploit an Integer Overflow vulnerability in Libtiff.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted TIFF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted TIFF file.

Affected Products

libtiff prior to 4.0.7

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.

CVE References

CVE-2016-9537