Remote Crash Vulnerability in libtiff's PixarLogCleanup Function

CVE-2016-5316 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.

Learn more about our Web Application Penetration Testing UK.