Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2012-2836
HistoryJul 13, 2012 - 10:34 a.m.

CVE-2012-2836

2012-07-1310:34:00
Debian Security Bug Tracker
security-tracker.debian.org
8

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.033 Low

EPSS

Percentile

91.1%

The exif_data_load_data function in exif-data.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image.

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.033 Low

EPSS

Percentile

91.1%

Related for DEBIANCVE:CVE-2012-2836