Signature Detail
Short Name |
HTTP:STC:IMG:TFF-THUNDER |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
TIFF Thunder decoder |
Release Date |
2011/08/26 |
Update Number |
1981 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: TIFF Thunder decoder
This signature detects attempts to exploit a known vulnerability against LibTiff Thunder decoder. Versions 3.9.4 and below are vulnerable. Attackers can attain remote code execution. Due to the nature of the vulnerability, the presence of thunder encoded file is detected, not the actual exploitation.
Extended Description
libTIFF is prone to a heap-based buffer-overflow vulnerability because the library fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code within the context of an application using the affected library. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
- Apple Mac Os X 10.6.5
- Apple Mac Os X 10.6.6
- Apple Mac Os X 10.6.7
- Apple Mac Os X 10.6.8
- Apple Mac Os X 10.7
- Apple Mac Os X 10.7.1
- Apple Mac Os X 10.7.2
- Apple Mac OS X 10.6
- Apple Mac OS X 10.6.1
- Apple Mac OS X 10.6.2
- Apple Mac OS X 10.6.3
- Apple Mac OS X 10.6.4
- Apple Mac OS X 10.6.5
- Apple Mac Os X Server 10.6.7
- Apple Mac Os X Server 10.6.8
- Apple Mac Os X Server 10.7
- Apple Mac Os X Server 10.7.1
- Apple Mac Os X Server 10.7.2
- Apple Mac OS X Server 10.6
- Apple Mac OS X Server 10.6.1
- Apple Mac OS X Server 10.6.2
- Apple Mac OS X Server 10.6.3
- Apple Mac OS X Server 10.6.4
- Apple Mac OS X Server 10.6.5
- Apple Mac OS X Server 10.6.5
- Apple Mac OS X Server 10.6.6
- Avaya Aura Application Server 5300 SIP Core 1.0
- Avaya Aura Application Server 5300 SIP Core 2.0
- Avaya Aura Application Server 5300 SIP Core 2.1
- Avaya Aura Presence Services 6.0
- Avaya Aura Presence Services 6.1
- Avaya Aura Session Manager 1.1
- Avaya Aura Session Manager 5.2
- Avaya Aura Session Manager 6.0
- Avaya Aura Session Manager 6.0 SP1
- Avaya Aura Session Manager 6.1
- Avaya Aura System Manager 5.2
- Avaya Aura System Manager 6.0
- Avaya Aura System Manager 6.0 SP1
- Avaya Aura System Manager 6.1
- Avaya Aura System Platform 1.1
- Avaya Aura System Platform 6.0
- Avaya Aura System Platform 6.0 SP2
- Avaya Aura System Platform 6.0 SP3
- Avaya Aura System Platform SP1.1
- Avaya Communication Server 1000E 6.0
- Avaya Communication Server 1000E 7.0
- Avaya Communication Server 1000E 7.5
- Avaya Communication Server 1000E Signaling Server 6.0
- Avaya Communication Server 1000E Signaling Server 7.0
- Avaya Communication Server 1000E Signaling Server 7.5
- Avaya Communication Server 1000M 6.0
- Avaya Communication Server 1000M 7.0
- Avaya Communication Server 1000M 7.5
- Avaya Communication Server 1000M Signaling Server 6.0
- Avaya Communication Server 1000M Signaling Server 7.0
- Avaya Communication Server 1000M Signaling Server 7.5
- Avaya IQ 4.0
- Avaya IQ 4.1.0
- Avaya IQ 4.2
- Avaya IQ 5
- Avaya IQ 5.1
- Avaya Message Networking 3.1
- Avaya Message Networking 5.2
- Avaya Message Networking 5.2.1
- Avaya Message Networking 5.2.2
- Avaya Message Networking 5.2 SP1
- Avaya Message Networking MN 3.1
- Avaya Messaging Storage Server 4.0
- Avaya Messaging Storage Server 5.0
- Avaya Messaging Storage Server 5.1
- Avaya Messaging Storage Server 5.1 SP1
- Avaya Messaging Storage Server 5.1 SP2
- Avaya Messaging Storage Server 5.2
- Avaya Messaging Storage Server 5.2.2
- Avaya Messaging Storage Server 5.2.8
- Avaya Messaging Storage Server 5.2 SP1
- Avaya Messaging Storage Server 5.2 SP2
- Avaya Messaging Storage Server 5.2 SP3
- Avaya Messaging Storage Server MSS 5.1
- Avaya Proactive Contact 4.0
- Avaya Proactive Contact 4.0.1
- Avaya Proactive Contact 4.1
- Avaya Proactive Contact 4.1.1
- Avaya Proactive Contact 4.1.2
- Avaya Proactive Contact 4.2
- Avaya Proactive Contact 4.2.1
- Avaya Proactive Contact 5.0
- Debian Linux 5.0
- Debian Linux 5.0 Alpha
- Debian Linux 5.0 Amd64
- Debian Linux 5.0 Arm
- Debian Linux 5.0 Armel
- Debian Linux 5.0 Hppa
- Debian Linux 5.0 Ia-32
- Debian Linux 5.0 Ia-64
- Debian Linux 5.0 M68k
- Debian Linux 5.0 Mips
- Debian Linux 5.0 Mipsel
- Debian Linux 5.0 Powerpc
- Debian Linux 5.0 S/390
- Debian Linux 5.0 Sparc
- LibTIFF 3.4
- LibTIFF 3.4.0
- LibTIFF 3.4 Beta18
- LibTIFF 3.4 Beta24
- LibTIFF 3.4 Beta28
- LibTIFF 3.4 Beta29
- LibTIFF 3.4 Beta31
- LibTIFF 3.4 Beta32
- LibTIFF 3.4 Beta34
- LibTIFF 3.4 Beta35
- LibTIFF 3.4 Beta36
- LibTIFF 3.4 Beta37
- LibTIFF 3.5.1
- LibTIFF 3.5.1
- LibTIFF 3.5.2
- LibTIFF 3.5.2
- LibTIFF 3.5.3
- LibTIFF 3.5.3
- LibTIFF 3.5.4
- LibTIFF 3.5.4
- LibTIFF 3.5.5
- LibTIFF 3.5.5
- LibTIFF 3.5.6
- LibTIFF 3.5.6 Beta
- LibTIFF 3.5.7
- LibTIFF 3.5.7
- LibTIFF 3.5.7 Alpha
- LibTIFF 3.5.7 Alpha2
- LibTIFF 3.5.7 Alpha3
- LibTIFF 3.5.7 Alpha4
- LibTIFF 3.5.7 Beta
- LibTIFF 3.6.0
- LibTIFF 3.6.0 .0
- LibTIFF 3.6.0 Beta
- LibTIFF 3.6.0 Beta2
- LibTIFF 3.6.1
- LibTIFF 3.6.1
- LibTIFF 3.7.0
- LibTIFF 3.7.0
- LibTIFF 3.7.0 Alpha
- LibTIFF 3.7.0 Beta
- LibTIFF 3.7.0 Beta2
- LibTIFF 3.7.1
- LibTIFF 3.7.1
- LibTIFF 3.7.2
- LibTIFF 3.7.2
- LibTIFF 3.7.2-7
- LibTIFF 3.7.3
- LibTIFF 3.7.3
- LibTIFF 3.7.4
- LibTIFF 3.8.0
- LibTIFF 3.8.0
- LibTIFF 3.8.1
- LibTIFF 3.8.1
- LibTIFF 3.8.2
- LibTIFF 3.9
- LibTIFF 3.9.0
- LibTIFF 3.9.0 Beta
- LibTIFF 3.9.1
- LibTIFF 3.9.2
- LibTIFF 3.9.2
- LibTIFF 3.9.2-5.2.1
- LibTIFF 3.9.3
- LibTIFF 3.9.4
- LibTIFF 3.9.4
- Mandriva Corporate Server 4.0
- Mandriva Corporate Server 4.0.0 X86 64
- Mandriva Enterprise Server 5
- Mandriva Enterprise Server 5 X86 64
- Mandriva Linux Mandrake 2009.0
- Mandriva Linux Mandrake 2009.0 X86 64
- Mandriva Linux Mandrake 2010.0
- Mandriva Linux Mandrake 2010.0 X86 64
- Mandriva Linux Mandrake 2010.1
- Mandriva Linux Mandrake 2010.1 X86 64
- Red Hat Enterprise Linux 5 Server
- Red Hat Enterprise Linux Desktop Version 4
- Red Hat Enterprise Linux AS 4
- Red Hat Enterprise Linux Desktop 5 Client
- Red Hat Enterprise Linux Desktop 6
- Red Hat Enterprise Linux Desktop Optional 6
- Red Hat Enterprise Linux Desktop Workstation 5 Client
- Red Hat Enterprise Linux ES 4
- Red Hat Enterprise Linux HPC Node 6
- Red Hat Enterprise Linux HPC Node Optional 6
- Red Hat Enterprise Linux Server 6
- Red Hat Enterprise Linux Server Optional 6
- Red Hat Enterprise Linux Workstation 6
- Red Hat Enterprise Linux Workstation Optional 6
- Red Hat Enterprise Linux WS 4
- Red Hat Fedora 13
- Red Hat Fedora 14
- Red Hat Fedora 15
- Research In Motion Blackberry Enterprise Server Express for Domino 5.0.2
- Research In Motion Blackberry Enterprise Server Express for Domino 5.0.2 MR1
- Research In Motion Blackberry Enterprise Server Express for Domino 5.0.3
- Research In Motion Blackberry Enterprise Server Express for Exchange 5.0.1
- Research In Motion Blackberry Enterprise Server Express for Exchange 5.0.2
- Research In Motion Blackberry Enterprise Server Express for Exchange 5.0.2 MR1
- Research In Motion Blackberry Enterprise Server Express for Exchange 5.0.3
- Research In Motion Blackberry Enterprise Server for Domino 5.0.1
- Research In Motion Blackberry Enterprise Server for Domino 5.0.2
- Research In Motion Blackberry Enterprise Server for Domino 5.0.2 MR1
- Research In Motion Blackberry Enterprise Server for Domino 5.0.3
- Research In Motion Blackberry Enterprise Server for Domino 5.0.3 MR3
- Research In Motion Blackberry Enterprise Server for Exchange 5.0.1
- Research In Motion Blackberry Enterprise Server for Exchange 5.0.2
- Research In Motion Blackberry Enterprise Server for Exchange 5.0.2 MR1
- Research In Motion Blackberry Enterprise Server for Exchange 5.0.3
- Research In Motion Blackberry Enterprise Server for Exchange 5.0.3 MR2
- Research In Motion Blackberry Enterprise Server for Novell Groupwise 4.1.7
- Research In Motion Blackberry Enterprise Server for Novell Groupwise 5.0.1
- Research In Motion Blackberry Enterprise Server for Novell Groupwise 5.0.1 MR3
- Slackware Linux 10.0.0
- Slackware Linux 10.1.0
- Slackware Linux 10.2.0
- Slackware Linux 11.0
- Slackware Linux 12.0
- Slackware Linux 12.1
- Slackware Linux 12.2
- Slackware Linux 13.0
- Slackware Linux 13.0 X86 64
- Slackware Linux 13.1
- Slackware Linux 13.1 X86 64
- Slackware Linux 9.0.0
- Slackware Linux 9.1.0
- Slackware Linux -Current
- Slackware Linux X86 64 -Current
- SuSE openSUSE 11.2
- SuSE openSUSE 11.3
- SuSE openSUSE 11.4
- SuSE SUSE Linux Enterprise 10 SP3
- SuSE SUSE Linux Enterprise 10 SP4
- SuSE SUSE Linux Enterprise 11 SP1
- SuSE SUSE Linux Enterprise Server 9
- Ubuntu Ubuntu Linux 10.04 Amd64
- Ubuntu Ubuntu Linux 10.04 ARM
- Ubuntu Ubuntu Linux 10.04 I386
- Ubuntu Ubuntu Linux 10.04 Powerpc
- Ubuntu Ubuntu Linux 10.04 Sparc
- Ubuntu Ubuntu Linux 10.10 amd64
- Ubuntu Ubuntu Linux 10.10 ARM
- Ubuntu Ubuntu Linux 10.10 i386
- Ubuntu Ubuntu Linux 10.10 powerpc
- Ubuntu Ubuntu Linux 6.06 LTS Amd64
- Ubuntu Ubuntu Linux 6.06 LTS I386
- Ubuntu Ubuntu Linux 6.06 LTS Powerpc
- Ubuntu Ubuntu Linux 6.06 LTS Sparc
- Ubuntu Ubuntu Linux 8.04 LTS Amd64
- Ubuntu Ubuntu Linux 8.04 LTS I386
- Ubuntu Ubuntu Linux 8.04 LTS Lpia
- Ubuntu Ubuntu Linux 8.04 LTS Powerpc
- Ubuntu Ubuntu Linux 8.04 LTS Sparc
- Ubuntu Ubuntu Linux 9.10 Amd64
- Ubuntu Ubuntu Linux 9.10 ARM
- Ubuntu Ubuntu Linux 9.10 I386
- Ubuntu Ubuntu Linux 9.10 Lpia
- Ubuntu Ubuntu Linux 9.10 Powerpc
- Ubuntu Ubuntu Linux 9.10 Sparc
References
- BugTraq: 46951
- CVE: CVE-2011-1167