Overview
- Description
- Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4D77F97-C618-43D2-B769-BBA0DBD0F441"
},
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8BD998A8-F573-494D-8059-6E374526E8AD"
},
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB7751B3-A9FF-4D76-8C9D-CC92F17B66A7"
},
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58F183B8-C095-4240-8807-73F6B38EE98C"
},
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "006A3051-2D2E-4271-82F4-682D54665880"
},
{
"criteria": "cpe:2.3:a:libexif:libexif:0.6.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "758F45F3-03F9-4F01-9A7D-12B6B1C2F9D6"
}
],
"operator": "OR"
}
]
}
]