Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0406

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-0406
Last Modified 10 Sep 2008 03:35:31
Published 14 Feb 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0406

Summary

A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image.

Vulnerable Systems

Application

  • Image Processing Software


References

MISC - http://www.redteam-pentesting.de/advisories/rt-sa-2005-008.txt

FULLDISC - 20050214 Advisory: JPEG EXIF information disclosure


Last Updated: 27 May 2016 10:39:47