CVE-2006-2120
published 2006-05-01CVE-2006-2120: The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that…
PriorityP411low2.1CVSS 2.0
AVLACLAuNCNINAP
EPSS
0.80%
52.0th percentile
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tiff | < tiff 3.8.1 (bookworm) | tiff 3.8.1 (bookworm) |
| libtiff | libtiff | — | — |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:N/A:P
osv2.1LOW
vendor_debian2.1MEDIUM
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
TIFF library vulnerabilities
vendor_ubuntu·2006-05-04
CVE-2006-2024 TIFF library vulnerabilities
Title: TIFF library vulnerabilities
Summary: TIFF library vulnerabilities
Tavis Ormandy and Andrey Kiselev discovered that libtiff did not
sufficiently verify the validity of TIFF files. By tricking an user
into opening a specially crafted TIFF file with any application that
uses libtiff, an attacker could exploit this to crash the application
or even execute arbitrary code with the application's privileges.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
security flaw
vendor_redhat·2006-02-08·CVSS 2.1
CVE-2006-2120 [LOW] security flaw
security flaw
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
Debian
CVE-2006-2120: tiff - The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause ...
vendor_debian·2006·CVSS 2.1
CVE-2006-2120 [LOW] CVE-2006-2120: tiff - The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause ...
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
Scope: local
bookworm: resolved (fixed in 3.8.1)
bullseye: resolved (fixed in 3.8.1)
forky: resolved (fixed in 3.8.1)
sid: resolved (fixed in 3.8.1)
trixie: resolved (fixed in 3.8.1)
GHSA
GHSA-vj46-9qg5-hvg2: The TIFFToRGB function in libtiff before 3
ghsa_unreviewed·2022-05-03
CVE-2006-2120 [LOW] GHSA-vj46-9qg5-hvg2: The TIFFToRGB function in libtiff before 3
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
OSV
CVE-2006-2120: The TIFFToRGB function in libtiff before 3
osv·2006-05-01·CVSS 2.1
CVE-2006-2120 [LOW] CVE-2006-2120: The TIFFToRGB function in libtiff before 3
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.
No detection rules found.
No public exploits indexed.
ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.aschttp://bugzilla.remotesensing.org/show_bug.cgi?id=1065http://secunia.com/advisories/19936http://secunia.com/advisories/19949http://secunia.com/advisories/19964http://secunia.com/advisories/20023http://secunia.com/advisories/20210http://secunia.com/advisories/20330http://secunia.com/advisories/20667http://support.avaya.com/elmodocs2/security/ASA-2006-119.htmhttp://www.debian.org/security/2006/dsa-1078http://www.mandriva.com/security/advisories?name=MDKSA-2006:082http://www.redhat.com/support/errata/RHSA-2006-0425.htmlhttp://www.securityfocus.com/bid/17809http://www.trustix.org/errata/2006/0024https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189974https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9572https://usn.ubuntu.com/277-1/ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.aschttp://bugzilla.remotesensing.org/show_bug.cgi?id=1065http://secunia.com/advisories/19936http://secunia.com/advisories/19949http://secunia.com/advisories/19964http://secunia.com/advisories/20023http://secunia.com/advisories/20210http://secunia.com/advisories/20330http://secunia.com/advisories/20667http://support.avaya.com/elmodocs2/security/ASA-2006-119.htmhttp://www.debian.org/security/2006/dsa-1078http://www.mandriva.com/security/advisories?name=MDKSA-2006:082http://www.redhat.com/support/errata/RHSA-2006-0425.htmlhttp://www.securityfocus.com/bid/17809http://www.trustix.org/errata/2006/0024https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189974https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9572https://usn.ubuntu.com/277-1/
2006-05-01
Published