VYPR
Unrated severityNVD Advisory· Published May 14, 2007· Updated Jun 16, 2026

CVE-2007-2645

CVE-2007-2645

Description

Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:libexif:libexif:0.5:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:libexif:libexif:0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libexif:libexif:0.5.12:*:*:*:*:*:*:*
    • cpe:2.3:a:libexif:libexif:0.6.11:*:*:*:*:*:*:*
    • cpe:2.3:a:libexif:libexif:0.6.12:*:*:*:*:*:*:*
    • cpe:2.3:a:libexif:libexif:0.6.13:*:*:*:*:*:*:*
    • cpe:2.3:a:libexif:libexif:0.6.9:*:*:*:*:*:*:*
    • (no CPE)range: <0.6.14

Patches

Vulnerability mechanics

References

22

News mentions

0

No linked articles in our index yet.