mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-27 17:30:27 +01:00
943 B
943 B
CVE-2016-3990
Description
Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted TIFF image to tiffcp.
POC
Reference
- http://bugzilla.maptools.org/show_bug.cgi?id=2544
- http://www.openwall.com/lists/oss-security/2016/04/12/2
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
- http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
Github
No PoCs found on GitHub currently.