Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23319
HistoryApr 10, 2020 - 12:22 a.m.

Arbitrary Code Execution

2020-04-1000:22:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

libexif is vulnerable to arbitrary code execution. An integer overflow flaw was found in the way libexif parses Exif image tags. If a victim opens a carefully crafted Exif image file, it could cause the application linked against libexif to execute arbitrary code, or crash.

References

Related

prion 1
openvas 31
nessus 24
centos 2
debiancve 1
cve 1
ubuntucve 1
oraclelinux 2
redhat 2
ubuntu 1
fedora 2
securityvulns 2
altlinux 1
gentoo 1
osv 1
debian 1
prion
prion
Integer overflow
2007-12-20 02:46:00
openvas
openvas
RedHat Update for libexif RHSA-2007:1166-01
2009-03-06 00:00:00
CentOS Update for libexif CESA-2007:1166 centos4 i386
2009-02-27 00:00:00
CentOS Update for libexif CESA-2007:1166 centos4 x86_64
2009-02-27 00:00:00
nessus
nessus
Oracle Linux 4 : libexif (ELSA-2007-1166)
2013-07-12 00:00:00
SuSE 10 Security Update : libexif5 (ZYPP Patch Number 4883)
2008-01-14 00:00:00
RHEL 4 : libexif (RHSA-2007:1166)
2007-12-24 00:00:00
centos
centos
libexif security update
2007-12-19 18:22:27
libexif security update
2007-12-21 00:49:29
debiancve
debiancve
CVE-2007-6352
2007-12-20 02:46:00
cve
cve
CVE-2007-6352
2007-12-20 02:46:00
ubuntucve
ubuntucve
CVE-2007-6352
2007-12-20 00:00:00
oraclelinux
oraclelinux
Moderate: libexif security update
2007-12-19 00:00:00
Moderate:libexif security update
2007-12-19 00:00:00
redhat
redhat
(RHSA-2007:1166) Moderate: libexif security update
2007-12-19 00:00:00
(RHSA-2007:1165) Moderate: libexif security update
2007-12-19 00:00:00
ubuntu
ubuntu
libexif vulnerabilities
2008-10-14 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: libexif-0.6.15-5.fc8
2007-12-20 19:54:00
[SECURITY] Fedora 7 Update: libexif-0.6.15-3.fc7
2007-12-20 19:50:12
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200712-15 ] libexif: Multiple vulnerabilities
2007-12-29 00:00:00
Multiple security vulnerabilities in different Exif libraries (libexif, exiv2, exiftags)
2007-12-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package libexif version 0.6.16-alt2
2007-12-17 00:00:00
gentoo
gentoo
libexif: Multiple vulnerabilities
2007-12-29 00:00:00
osv
osv
libexif - several vulnerabilities
2008-02-08 00:00:00
debian
debian
[SECURITY] [DSA 1487-1] New libexif packages fix several vulnerabilities
2008-02-08 17:25:20

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON
Related for VERACODE:23319
prion1openvas31nessus24centos2debiancve1cve1ubuntucve1oraclelinux2redhat2ubuntu1fedora2securityvulns2altlinux1gentoo1osv1debian1