An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DLA-693-1 | tiff security update |
![]() |
DSA-3762-1 | tiff security update |
![]() |
EUVD-2016-6596 | An exploitable heap-based buffer overflow exists in the handling of TIFF images in LibTIFF's TIFF2PDF tool. A crafted TIFF document can lead to a heap-based buffer overflow resulting in remote code execution. Vulnerability can be triggered via a saved TIFF file delivered by other means. |
![]() |
USN-3212-1 | LibTIFF vulnerabilities |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: certcc
Published:
Updated: 2024-08-06T01:07:59.890Z
Reserved: 2016-06-16T00:00:00
Link: CVE-2016-5652

No data.

Status : Deferred
Published: 2017-01-06T21:59:01.680
Modified: 2025-04-20T01:37:25.860
Link: CVE-2016-5652


No data.