Filtered by vendor Libexif
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2006-4168 | 1 Libexif | 1 Libexif | 2018-10-17 | 6.8 MEDIUM | N/A |
Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow. | |||||
CVE-2007-2645 | 1 Libexif | 1 Libexif | 2018-10-16 | 9.3 HIGH | N/A |
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable. | |||||
CVE-2007-6352 | 1 Libexif | 1 Libexif | 2018-10-15 | 6.8 MEDIUM | N/A |
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c. | |||||
CVE-2005-0664 | 1 Libexif | 1 Libexif | 2018-10-03 | 2.6 LOW | N/A |
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag. |