2682 matches found
CVE-2007-6353
CVE-2007-6353 is an integer overflow in the Exiv2 library (in exif.cpp) that allows context-dependent attackers to trigger a heap-based buffer overflow via a crafted EXIF file, potentially enabling arbitrary code execution. Public disclosures across multiple OS advisories confirm impact on libexi...
CVE-2007-6353
Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow...
CVE-2007-6353
Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow...
CVE-2007-6353
Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow...
CVE-2005-4676
The CVE-2005-4676 vulnerability is a buffer overflow in Exiv2 before 0.9 caused by not null-terminating strings before sscanf when parsing IPTC metadata, enabling remote attackers to crash the application via crafted images. Affected: Exiv2
CVE-2005-4676
Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service application crash via images with crafted IPTC metadata...
CVE-2005-4676
Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service application crash via images with crafted IPTC metadata...
[SA18619] Exiv2 IPTC Metadata Processing Denial of Service
TITLE: Exiv2 IPTC Metadata Processing Denial of Service SECUNIA ADVISORY ID: SA18619 VERIFY ADVISORY: http://secunia.com/advisories/18619/ CRITICAL: Not critical IMPACT: DoS WHERE: Local system SOFTWARE: Exiv2 0.x http://secunia.com/product/7039/ DESCRIPTION: A vulnerability has been reported in...
Exiv2 - Corrupted EXIF Data Denial of Service
Exiv2 - Corrupted EXIF Data Denial of Service source: https://www.securityfocus.com/bid/16400/info Exiv2 is susceptible to a denial-of-service vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input data before attempting to read it, resulting in...
exiv2 IPTC library DoS
sscanf is used for data wich is not NULL-terminated...
Exiv2 - Corrupted EXIF Data Denial of Service
source: https://www.securityfocus.com/bid/16400/info Exiv2 is susceptible to a denial-of-service vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input data before attempting to read it, resulting in an out-of-bounds memory access crash. This...
CVE-2005-4676
Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service application crash via images with crafted IPTC metadata...
DEBIAN-CVE-2005-4676
Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service application crash via images with crafted IPTC metadata...
CVE-2005-4676
Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service application crash via images with crafted IPTC metadata...
CVE-2022-3755
Removed by vendor...
CVE-2022-3756
Removed by vendor...
CVE-2022-3718
Removed by vendor...
CVE-2022-3717
Removed by vendor...
CVE-2022-3757
Removed by vendor...
CVE-2022-3953
Removed by vendor...