Heap-based buffer overflow in the PackBitsPreEncode function in tif_packbits.c in bmp2tiff in libtiff 4.0.6 and earlier allows remote attackers to execute arbitrary code or cause a denial of service via a large width field in a BMP image.
Vulnerable Systems:
*bmp2tiff in libtiff 4.0.6 and earlier
Immune Systems:
*versions after bmp2tiff in libtiff 4.0.6
An attacker could exploit this issue to execute arbitrary code in the context of the application using the library. Failed exploit attempts may result in denial-of-service conditions.