VYPR

Libexif

by Libexif Project

Source repositories

CVEs (23)

  • CVE-2007-6352Dec 20, 2007
    risk 0.00cvss epss 0.03

    Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.

  • CVE-2006-4168Jun 14, 2007
    risk 0.00cvss epss 0.04

    Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based…

  • CVE-2005-0664May 2, 2005
    risk 0.00cvss epss 0.04

    Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.

Page 2 of 2