When was CVE-2004-0886 disclosed?

CVE-2004-0886 was first published in the National Vulnerability Database on January 27, 2005, with the most recent update on April 16, 2026. EchelonGraph re-ingests CVE updates from NVD on a 2-hour cycle, so this page reflects the latest published state.

Is CVE-2004-0886 actively exploited?

CVE-2004-0886 is not currently on CISA's Known Exploited Vulnerabilities catalog. FIRST EPSS estimates a 93.5% percentile likelihood of exploitation in the next 30 days — higher percentiles indicate greater predicted risk.

How do I remediate CVE-2004-0886?

Patch to the fixed version published by the affected vendor. Where vendor advisories exist for CVE-2004-0886, EchelonGraph cross-links them in the Vendor Advisories panel below — those typically contain the canonical remediation steps, fixed version numbers, and any vendor-specific mitigations.

CVE-2004-0886

NONECVSS 0.0

0.0

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.

CVSS v3: —
EG Score: —
EPSS: 93.5%
KEV: Not listed

References (42)

cve@mitrehttp://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000888
cve@mitrehttp://marc.info/?l=bugtraq&m=109779465621929&w=2
cve@mitrehttp://secunia.com/advisories/12818
cve@mitrehttp://securitytracker.com/id?1011674
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-101677-1
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-66-201072-1
cve@mitrehttp://www.ciac.org/ciac/bulletins/p-015.shtml
cve@mitrehttp://www.debian.org/security/2004/dsa-567
cve@mitrehttp://www.kb.cert.org/vuls/id/687568
cve@mitrehttp://www.kde.org/info/security/advisory-20041209-2.txt
cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2004:109
cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2005:052
cve@mitrehttp://www.novell.com/linux/security/advisories/2004_38_libtiff.html
cve@mitrehttp://www.redhat.com/support/errata/RHSA-2004-577.html
cve@mitrehttp://www.redhat.com/support/errata/RHSA-2005-021.html

Is Your Infrastructure Affected by CVE-2004-0886?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2004-0886

Published

Last Modified

References (42)

Data Freshness Timeline

Frequently asked(4)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2004-0886?

CVE-2004-0886

📅 Published

🔄 Last Modified

🔗 References (42)

Data Freshness Timeline

❓ Frequently asked(4)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2004-0886?

Published

Last Modified

References (42)

Frequently asked(4)