CVE-2006-4168 – libexif integer overflow

https://notcve.org/view.php?id=CVE-2006-4168

Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow. Desbordamiento de entero en la función exif_data_load_data_entry en libexif/exif-data.c en Libexif anterior a 0.6.16 permite a atacantes remotos provocar denegación de servicio (caida de aplicación) o ejecutar código de su elección a través de una imagen con diferentes componentes EXIF, lo cual dispara un desbordamiento de búfer basado en pila. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=543 http://osvdb.org/35379 http://secunia.com/advisories/25642 http://secunia.com/advisories/25645 http://secunia.com/advisories/25674 http://secunia.com/advisories/25717 http://secunia.com/advisories/25746 http://secunia.com/advisories/25768 http://secunia.com/advisories/25820 http://secunia.com/advisories/25842 http://secunia.com/advisories/25932 http://secunia.com/advisories/26083 http://security.gentoo. • CWE-190: Integer Overflow or Wraparound •