← back
CVE-2006-3463

CVE-2006-3463

EPSS 2.6%
The EstimateStripByteCounts function in TIFF library (libtiff) before 3.8.2 uses a 16-bit unsigned short when iterating over an unsigned 32-bit value, which allows context-dependent attackers to cause a denial of service via a large td_nstrips value, which triggers an infinite loop.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-Pftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://lwn.net/Alerts/194228/http://secunia.com/advisories/21274http://secunia.com/advisories/21290http://secunia.com/advisories/21304http://secunia.com/advisories/21319http://secunia.com/advisories/21334http://secunia.com/advisories/21338http://secunia.com/advisories/21346http://secunia.com/advisories/21370http://secunia.com/advisories/21392