Back to search
CVE-2006-3463
Published: Aug 3, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value, which triggers an infinite loop.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2007-3486
vdb-entry
x_refsource_VUPEN
21501
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:136
vendor-advisory
x_refsource_MANDRIVA
21537
third-party-advisory
x_refsource_SECUNIA
21632
third-party-advisory
x_refsource_SECUNIA
GLSA-200608-07
vendor-advisory
x_refsource_GENTOO
21338
third-party-advisory
x_refsource_SECUNIA
USN-330-1
vendor-advisory
x_refsource_UBUNTU
http://support.avaya.com/elmodocs2/security/ASA-2006-166.htm
x_refsource_CONFIRM
1016628
vdb-entry
x_refsource_SECTRACK
DSA-1137
vendor-advisory
x_refsource_DEBIAN
21370
third-party-advisory
x_refsource_SECUNIA
21598
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0648
vendor-advisory
x_refsource_REDHAT
MDKSA-2006:137
vendor-advisory
x_refsource_MANDRIVA
27222
third-party-advisory
x_refsource_SECUNIA
ADV-2007-4034
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:10639
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2006:044
vendor-advisory
x_refsource_SUSE
21290
third-party-advisory
x_refsource_SECUNIA
21274
third-party-advisory
x_refsource_SECUNIA
ADV-2006-3105
vdb-entry
x_refsource_VUPEN
27181
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0603
vendor-advisory
x_refsource_REDHAT
21304
third-party-advisory
x_refsource_SECUNIA
SSA:2006-230-01
vendor-advisory
x_refsource_SLACKWARE
https://issues.rpath.com/browse/RPL-558
x_refsource_CONFIRM
27832
third-party-advisory
x_refsource_SECUNIA
21346
third-party-advisory
x_refsource_SECUNIA
201331
vendor-advisory
x_refsource_SUNALERT
19284
vdb-entry
x_refsource_BID
21319
third-party-advisory
x_refsource_SECUNIA
21392
third-party-advisory
x_refsource_SECUNIA
21334
third-party-advisory
x_refsource_SECUNIA
22036
third-party-advisory
x_refsource_SECUNIA
2006-0044
vendor-advisory
x_refsource_TRUSTIX
103160
vendor-advisory
x_refsource_SUNALERT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now