NVD

Id
60825  
Name
CVE-2006-2120  
Description
The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers to cause a denial of service (crash) via a crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values, which triggers an out-of-bounds read.  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2016-12-20  
Published
2006-05-01  
Modified Date
2010-08-21  
Seq
2006-2120  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
314102 60825 CVE-2006-2120 20060501-01-U  View
314103 60825 CVE-2006-2120 http://bugzilla.remotesensing.org/show_bug.cgi?id=1065  View
314104 60825 CVE-2006-2120 oval:org.mitre.oval:def:9572  View
314105 60825 CVE-2006-2120 http://support.avaya.com/elmodocs2/security/ASA-2006-119.htm  View
314106 60825 CVE-2006-2120 DSA-1078  View
314107 60825 CVE-2006-2120 MDKSA-2006:082  View
314108 60825 CVE-2006-2120 RHSA-2006:0425  View
314109 60825 CVE-2006-2120 17809  View
314110 60825 CVE-2006-2120 2006-0024  View
314111 60825 CVE-2006-2120 USN-277-1  View
314112 60825 CVE-2006-2120 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189974  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
58053 JVNDB-2006-000249 LibTIFF の TIFFToRGB() 関数におけるメモリアクセスエラーの脆弱性 ------------ CVE-2006-2120 18222 CVE-2006-2120 60825 2.1 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000249.html 2006-04-28 2007-04-01 View