Search
Total
9 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-6351 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 4.3 MEDIUM | N/A |
| libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c. | |||||
| CVE-2009-3895 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in the exif_entry_fix function (aka the tag fixup routine) in libexif/exif-entry.c in libexif 0.6.18 allows remote attackers to cause a denial of service or possibly execute arbitrary code via an invalid EXIF image. NOTE: some of these details are obtained from third party information. | |||||
| CVE-2012-2812 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 6.4 MEDIUM | N/A |
| The exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. | |||||
| CVE-2012-2813 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 6.4 MEDIUM | N/A |
| The exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. | |||||
| CVE-2012-2814 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 7.5 HIGH | N/A |
| Buffer overflow in the exif_entry_format_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image. | |||||
| CVE-2012-2836 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 6.4 MEDIUM | N/A |
| The exif_data_load_data function in exif-data.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. | |||||
| CVE-2012-2837 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 5.0 MEDIUM | N/A |
| The mnote_olympus_entry_get_value function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (divide-by-zero error) via an image with crafted EXIF tags that are not properly handled during the formatting of EXIF maker note tags. | |||||
| CVE-2012-2840 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 7.5 HIGH | N/A |
| Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image. | |||||
| CVE-2012-2841 | 1 Libexif Project | 1 Libexif | 2021-01-26 | 7.5 HIGH | N/A |
| Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow. | |||||