CVE-2006-2193

2006-06-0819:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-2193

buffer overflow

libtiff

tiff2pdf

denial of service

crash

arbitrary code

tiff file

documentname

utf-8

nvd

7.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.1%

JSON

Buffer overflow in the t2p_write_pdf_string function in tiff2pdf in libtiff 3.8.2 and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TIFF file with a DocumentName tag that contains UTF-8 characters, which triggers the overflow when a character is sign extended to an integer that produces more digits than expected in an sprintf call.

CPENameOperatorVersion
libtiff:libtifflibtiffeq3.6.1
libtiff:libtifflibtiffeq3.8.0
libtiff:libtifflibtiffeq3.8.1
libtiff:libtifflibtiffeq3.4
libtiff:libtifflibtiffeq3.5.7
libtiff:libtifflibtiffeq3.7.0
libtiff:libtifflibtiffeq3.6.0
libtiff:libtifflibtiffeq3.5.3
libtiff:libtifflibtiffeq3.7.1
libtiff:libtifflibtiffeq3.5.4

CPE	Name	Operator	Version
libtiff:libtiff	libtiff	eq	3.6.1
libtiff:libtiff	libtiff	eq	3.8.0
libtiff:libtiff	libtiff	eq	3.8.1
libtiff:libtiff	libtiff	eq	3.4
libtiff:libtiff	libtiff	eq	3.5.7
libtiff:libtiff	libtiff	eq	3.7.0
libtiff:libtiff	libtiff	eq	3.6.0
libtiff:libtiff	libtiff	eq	3.5.3
libtiff:libtiff	libtiff	eq	3.7.1
libtiff:libtiff	libtiff	eq	3.5.4