CVE-2016-6236 in Dropbox Leptoninfo

Summary

The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg file.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

07/17/2016

Disclosure

02/02/2017

Moderation

VulDB entry created

Entries

1: VDB-96502

CPE

ready

CWE

CWE-125 (Confirmed)

CVSS

5.4

EPSS

0.00207

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6236
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6236
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6236/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!