CVE-2006-0405
published 2006-01-25CVE-2006-0405: The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF…
PriorityP416medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.83%
84.9th percentile
The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 3.8.0-2 (bookworm) | tiff 3.8.0-2 (bookworm) |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cghf-hqpf-m9f9: The TIFFFetchShortPair function in tif_dirread
ghsa_unreviewed·2022-05-01
CVE-2006-0405 [MEDIUM] GHSA-cghf-hqpf-m9f9: The TIFFFetchShortPair function in tif_dirread
The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function.
OSV
CVE-2006-0405: The TIFFFetchShortPair function in tif_dirread
osv·2006-01-25·CVSS 5.0
CVE-2006-0405 [MEDIUM] CVE-2006-0405: The TIFFFetchShortPair function in tif_dirread
The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function.
Debian
CVE-2006-0405: tiff - The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote ...
vendor_debian·2006·CVSS 5.0
CVE-2006-0405 [MEDIUM] CVE-2006-0405: tiff - The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote ...
The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function.
Scope: local
bookworm: resolved (fixed in 3.8.0-2)
bullseye: resolved (fixed in 3.8.0-2)
forky: resolved (fixed in 3.8.0-2)
sid: resolved (fixed in 3.8.0-2)
trixie: resolved (fixed in 3.8.0-2)
Red Hat
CVE-2006-0405: The TIFFFetchShortPair function in tif_dirread
vendor_redhat·CVSS 5.0
CVE-2006-0405 [MEDIUM] CVE-2006-0405: The TIFFFetchShortPair function in tif_dirread
The TIFFFetchShortPair function in tif_dirread.c in libtiff 3.8.0 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a NULL pointer dereference, possibly due to changes in type declarations and/or the TIFFVSetField function.
Statement: This issue did not affect the versions of libtiff as distributed with Red Hat Enterprise Linux 2.1, 3, or 4.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://bugzilla.remotesensing.org/show_bug.cgi?id=1029http://bugzilla.remotesensing.org/show_bug.cgi?id=1034http://secunia.com/advisories/18587http://secunia.com/advisories/20345http://www.gentoo.org/security/en/glsa/glsa-200605-17.xmlhttp://www.securityfocus.com/bid/18172http://www.vupen.com/english/advisories/2006/0302https://exchange.xforce.ibmcloud.com/vulnerabilities/24275http://bugzilla.remotesensing.org/show_bug.cgi?id=1029http://bugzilla.remotesensing.org/show_bug.cgi?id=1034http://secunia.com/advisories/18587http://secunia.com/advisories/20345http://www.gentoo.org/security/en/glsa/glsa-200605-17.xmlhttp://www.securityfocus.com/bid/18172http://www.vupen.com/english/advisories/2006/0302https://exchange.xforce.ibmcloud.com/vulnerabilities/24275
2006-01-25
Published