CVE-2017-9935

EPSS 0.48% · P65 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-9935

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In LibTIFF 4.0.8, there is a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2p_free, memory corruption in t2p_readwrite_pdf_image, or a double free in t2p_free. Given these possibilities, it probably could cause arbitrary code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Silicon Graphics LibTIFF 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Silicon Graphics LibTIFF是美国Silicon Graphics公司的一个读写TIFF（标签图像文件格式）文件的库。该库包含一些处理TIFF文件的命令行工具。 Silicon Graphics LibTIFF 4.0.8版本中存在基于堆的缓冲区溢出漏洞。攻击者可借助特制的TIFF文档利用该漏洞造拒绝服务或执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2017-9935

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-9935

请登录查看更多情报信息。

http://www.securityfocus.com/bid/99296vdb-entryx_refsource_BID
https://www.debian.org/security/2018/dsa-4100vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/3606-1/vendor-advisoryx_refsource_UBUNTU
https://lists.debian.org/debian-lts-announce/2017/12/msg00008.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2017-9935

Same Patch Batch · n/a · 2017-06-26 · 24 CVEs total

CVE-2017-9145		Tiki Wiki CMS Groupware 跨站脚本漏洞
CVE-2017-9955		GNU BinUtils Binary File Descriptor库缓冲区错误漏洞
CVE-2017-9954		GNU Binutils Binary File Descriptor库缓冲区错误漏洞
CVE-2017-9953		Exiv2 安全漏洞
CVE-2017-7458		ntopng 安全漏洞
CVE-2017-9949		radare2 安全漏洞
CVE-2015-3315		Red Hat Automatic Bug Reporting Tool 安全漏洞
CVE-2015-3215		NetKVM Windows Virtio 输入验证错误漏洞
CVE-2015-3142		Automatic Bug Reporting Tool 信息泄露漏洞
CVE-2015-1870		Automatic Bug Reporting Tool 信息泄露漏洞
CVE-2014-8127		LibTIFF 缓冲区错误漏洞
CVE-2017-9948		Microsoft Skype 缓冲区错误漏洞
CVE-2017-6662		Cisco Prime Infrastructure和Evolved Programmable Network Manager 安全漏洞
CVE-2017-9937		Silicon Graphics LibTIFF 安全漏洞
CVE-2017-9936		Silicon Graphics LibTIFF 安全漏洞
CVE-2017-9929		lrzip 缓冲区错误漏洞
CVE-2017-9928		lrzip 缓冲区错误漏洞
CVE-2017-9615		Cognito Software Moneyworks 安全漏洞
CVE-2017-9466		TP-Link WR841N V8 executable httpd 安全漏洞
CVE-2017-7459		ntopng 安全漏洞

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2017-9935

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-9935

I. Basic Information for CVE-2017-9935

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-9935

III. Intelligence Information for CVE-2017-9935

Same Patch Batch · n/a · 2017-06-26 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-9935

Leave a comment