CVE-2006-2026

EPSS 10.28% · P93 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-2026

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Double free vulnerability in tif_jpeg.c in libtiff before 3.8.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF image that triggers errors related to "setfield/getfield methods in cleanup functions."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

LibTiff ‘tif_jpeg.c’整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Silicon Graphics LibTIFF是美国Silicon Graphics公司的一个读写TIFF（标签图像文件格式）文件的库。该库包含一些处理TIFF文件的命令行工具。 LibTiff的tif_dirread.c文件的tif_jpeg.c文件中存在整数溢出漏洞，允许攻击者通过可触发"setfield/getfield methods in cleanup functions"错误的特制TIFF图形导致拒绝服务或执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-2026

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-2026

请登录查看更多情报信息。

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189933x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-119.htmx_refsource_CONFIRM
http://bugzilla.remotesensing.org/show_bug.cgi?id=1102x_refsource_MISC
http://secunia.com/advisories/20210third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20345third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19936third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20667third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20021third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/17733vdb-entryx_refsource_BID
http://secunia.com/advisories/19949third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19897third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19838third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20023third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201332-1vendor-advisoryx_refsource_SUNALERT
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103099-1vendor-advisoryx_refsource_SUNALERT
http://www.debian.org/security/2006/dsa-1054vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/277-1/vendor-advisoryx_refsource_UBUNTU
http://www.trustix.org/errata/2006/0024vendor-advisoryx_refsource_TRUSTIX
http://www.vupen.com/english/advisories/2006/1563vdb-entryx_refsource_VUPEN
ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.ascvendor-advisoryx_refsource_SGI
http://www.gentoo.org/security/en/glsa/glsa-200605-17.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2006:082vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0425.htmlvendor-advisoryx_refsource_REDHAT
http://www.novell.com/linux/security/advisories/2006_04_28.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11389vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/26135vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2006-2026

Same Patch Batch · n/a · 2006-04-25 · 50 CVEs total

CVE-2006-2012		Skulltag 格式化字符串漏洞
CVE-2006-2018		vBulletin calendar.php SQL注入漏洞
CVE-2006-2022		Fenice远程溢出及拒绝服务漏洞
CVE-2006-2023		Fenice远程溢出及拒绝服务漏洞
CVE-2006-1863		Linux kernel 安全漏洞
CVE-2006-2024		LibTiff 多个拒绝服务漏洞
CVE-2006-2025		LibTiff TIFFFetchData整数溢出漏洞
CVE-2006-2021		Asterisk Recording Interface Audio.PHP 信息泄露漏洞
CVE-2006-2014		SL_site gallerie.php 目录遍历漏洞
CVE-2006-2013		SL_site page.php SQL注入漏洞
CVE-2006-2015		SL_site 跨站脚本漏洞
CVE-2006-2011		4images Member.PHP 跨站脚本攻击漏洞
CVE-2006-2010		Bloggage Check_login.ASP 多个SQL注入漏洞
CVE-2006-2009		PHPMyAgenda Agenda.PHP3 远程文件包含漏洞
CVE-2006-2008		Built2go Movie Review Movie_CLS.PHP3 远程文件包含漏洞
CVE-2006-2007		Winny 堆缓存区溢出漏洞
CVE-2006-2006		IZArc Archiver 多个目录遍历漏洞
CVE-2006-2005		ClanSys index.php Eval注入漏洞
CVE-2006-2004		RI Blog 多个SQL注入漏洞
CVE-2006-2003		Community Architect Guestbook cgi-bin/guest 跨站脚本攻击漏洞

Showing top 20 of 50 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-2026

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-2026

I. Basic Information for CVE-2006-2026

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-2026

III. Intelligence Information for CVE-2006-2026

Same Patch Batch · n/a · 2006-04-25 · 50 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-2026

Leave a comment