CVSS: 9.8EPSS: 5%CPEs: 6EXPL: 0CVE-2006-4168 – libexif integer overflow
https://notcve.org/view.php?id=CVE-2006-4168
14 Jun 2007 — Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow. Desbordamiento de entero en la función exif_data_load_data_entry en libexif/exif-data.c en Libexif anterior a 0.6.16 permite a atacantes remotos provocar denegación de servicio (caida de aplicación) o ejecutar código de s... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=543 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 20%CPEs: 6EXPL: 2CVE-2007-2645 – LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow
https://notcve.org/view.php?id=CVE-2007-2645
14 May 2007 — Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable. Desbordamiento de entero en la función exif_data_load_data_entry en exif-data.c en libexif before 0.6.14 permite a atacantes con la intervención del usuario provocar denegación de servicio (caida) o posiblemente ejecutar código de su elec... • https://www.exploit-db.com/exploits/30024 •
CVSS: 7.8EPSS: 3%CPEs: 1EXPL: 0CVE-2005-0664 – dsa-709.txt
https://notcve.org/view.php?id=CVE-2005-0664
08 Mar 2005 — Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag. libexif contains a buffer overflow vulnerability in the EXIF tag validation code. When opening an image with a specially crafted EXIF tag, the lack of validation can cause applications linked to libexif to crash. Versions less than 0.5.12-r1 ar... • http://secunia.com/advisories/17705 •