| Published | 2017-01-20 15:59:00 |
|---|---|
| Last Modified | 2017-01-20 19:23:27 |
| AKA | CVE-2016-5318 |
| Summary | Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted tiff. |
| CVSS Score | 4.3 |
| CVSS Source | http://nvd.nist.gov |
| Access Vector | Local | Adjacent | Network |
|---|---|---|---|
| Access Complexity | Low | Medium | High |
| Authentication | None | Single | Multiple |
| Confidentiality | None | Partial | Complete |
| Integrity | None | Partial | Complete |
| Availability | None | Partial | Complete |
| Type | Content |
|---|---|
| Vendor Advisory | [oss-security] 20160427 3 bugs refer to buffer overflow in in libtiff 4.0.6 |
| Vendor Advisory | [oss-security] 20160606 3 bugs refer to buffer overflow in in libtiff 4.0.6 |
| Vendor Advisory | 88604 |
