Vulnerabilities (CVE)

Filtered by vendor Libexif Subscribe
Filtered by product Libexif
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-6352 1 Libexif 1 Libexif 2024-11-21 6.8 MEDIUM N/A
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
CVE-2007-2645 1 Libexif 1 Libexif 2024-11-21 9.3 HIGH N/A
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
CVE-2006-4168 1 Libexif 1 Libexif 2024-11-21 6.8 MEDIUM N/A
Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow.
CVE-2005-0664 1 Libexif 1 Libexif 2024-11-20 2.6 LOW N/A
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.