Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2016-10-03 CVE-2016-3658 Out-of-bounds Read vulnerability in Libtiff
The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.
network
low complexity
libtiff CWE-125
5.0
2016-10-03 CVE-2016-3634 Out-of-bounds Read vulnerability in Libtiff
The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.
network
low complexity
libtiff CWE-125
5.0
2016-10-03 CVE-2016-3633 Out-of-bounds Read vulnerability in Libtiff
The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the src variable.
network
low complexity
libtiff CWE-125
5.0
2016-10-03 CVE-2016-3631 Out-of-bounds Read vulnerability in Libtiff
The (1) cpStrips and (2) cpTiles functions in the thumbnail tool in LibTIFF 4.0.6 and earlier allow remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the bytecounts[] array variable.
network
low complexity
libtiff CWE-125
5.0
2016-10-03 CVE-2016-3625 Out-of-bounds Read vulnerability in Libtiff
tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.
network
libtiff CWE-125
4.3
2016-10-03 CVE-2016-3621 Out-of-bounds Read vulnerability in Libtiff
The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c lzw" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
network
libtiff CWE-125
6.8
2016-10-03 CVE-2016-3620 Out-of-bounds Read vulnerability in Libtiff
The ZIPEncode function in tif_zip.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c zip" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
network
low complexity
libtiff CWE-125
5.0
2016-10-03 CVE-2016-3619 Out-of-bounds Read vulnerability in Libtiff 4.0.6
The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c none" option is used, allows remote attackers to cause a denial of service (buffer over-read) via a crafted BMP image.
network
libtiff CWE-125
4.3
2016-09-26 CVE-2016-6306 Out-of-bounds Read vulnerability in multiple products
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c.
network
high complexity
openssl hp novell nodejs debian canonical CWE-125
5.9
2016-09-25 CVE-2016-4776 Out-of-bounds Read vulnerability in Apple products
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4773 and CVE-2016-4774.
network
apple CWE-125
5.8