Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0664

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2005-0664
Last Modified 07 Mar 2011 09:20:23
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-0664

Summary

Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.

Vulnerable Systems

Application

  • Libexif 0.6.9


References

MISC - https://bugzilla.ubuntu.com/show_bug.cgi?id=7152

GENTOO - GLSA-200503-17

DEBIAN - DSA-709

SECTRACK - 1013398

VUPEN - ADV-2005-2565

VUPEN - ADV-2005-0240

UBUNTU - USN-91-1

REDHAT - RHSA-2005:300

SUNALERT - 102041

SECUNIA - 17705

MANDRAKE - MDKSA-2005:064


Last Updated: 27 May 2016 10:39:53