New! Vulnerability Priority Rating (VPR)
Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.
VPR Score: 5.9
SynopsisThe remote Debian host is missing a security-related update.
DescriptionWilliam Robinet and Michal Zalewski discovered multiple vulnerabilities in the TIFF library and its tools, which may result in denial of service or the execution of arbitrary code if a malformed TIFF file is processed.
SolutionUpgrade the tiff packages.
For the oldstable distribution (wheezy), these problems have been fixed in version 4.0.2-6+deb7u4.
For the stable distribution (jessie), these problems have been fixed before the initial release.