Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-2645
HistoryMay 14, 2007 - 12:00 a.m.

CVE-2007-2645

2007-05-1400:00:00
ubuntu.com
ubuntu.com
7

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.399 Low

EPSS

Percentile

97.3%

JSON

Integer overflow in the exif_data_load_data_entry function in exif-data.c
in libexif before 0.6.14 allows user-assisted remote attackers to cause a
denial of service (crash) or possibly execute arbitrary code via crafted
EXIF data, involving the (1) doff or (2) s variable.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchlibexif< 0.6.12-2ubuntu0.2UNKNOWN
ubuntu6.10noarchlibexif< 0.6.13-4ubuntu0.2UNKNOWN
ubuntu7.04noarchlibexif< 0.6.13-5ubuntu0.2UNKNOWN

Related

openvas 19
cvelist 1
cve 1
nessus 13
debiancve 1
securityvulns 2
prion 1
gentoo 1
ubuntu 1
fedora 4
nvd 1
suse 1
debian 1
osv 1
openvas
openvas
Fedora Update for libexif FEDORA-2007-0001
2009-02-27 00:00:00
Ubuntu Update for libexif vulnerability USN-471-1
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200706-01 (libexif)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2007-2645
2007-05-14 21:00:00
cve
cve
CVE-2007-2645
2007-05-14 21:19:00
nessus
nessus
SuSE9 Security Update : libexif (YOU Patch Number 11555)
2009-09-24 00:00:00
Ubuntu 6.06 LTS / 6.10 / 7.04 : libexif vulnerability (USN-471-1)
2007-11-10 00:00:00
Fedora 7 : libexif-0.6.15-1.fc7 (2007-0003)
2012-09-24 00:00:00
debiancve
debiancve
CVE-2007-2645
2007-05-14 21:19:00
securityvulns
securityvulns
libexif library integer overflow
2007-06-13 00:00:00
rPSA-2007-0115-1 libexif
2007-06-05 00:00:00
prion
prion
Integer overflow
2007-05-14 21:19:00
gentoo
gentoo
libexif: Integer overflow vulnerability
2007-06-05 00:00:00
ubuntu
ubuntu
libexif vulnerability
2007-06-11 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: libexif-0.6.15-1.fc7
2007-05-31 18:07:55
[SECURITY] Fedora Core 6 Update: libexif-0.6.15-1.fc6
2007-06-11 19:50:28
[SECURITY] Fedora 7 Update: libexif-0.6.15-2.fc7
2007-06-13 21:10:47
nvd
nvd
CVE-2007-2645
2007-05-14 21:19:00
suse
suse
remote denial of service in libexif
2007-07-03 17:45:54
debian
debian
[SECURITY] [DSA 1487-1] New libexif packages fix several vulnerabilities
2008-02-08 17:24:58
osv
osv
libexif - several vulnerabilities
2008-02-08 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.399 Low

EPSS

Percentile

97.3%

JSON
Related for UB:CVE-2007-2645
openvas19cvelist1cve1nessus13debiancve1securityvulns2prion1gentoo1ubuntu1fedora4nvd1suse1debian1osv1