Back to search
CVE-2007-6352
Published: Dec 20, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2007:1166
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:4814
vdb-entry
signature
x_refsource_OVAL
234701
vendor-advisory
x_refsource_SUNALERT
GLSA-200712-15
vendor-advisory
x_refsource_GENTOO
https://issues.rpath.com/browse/RPL-2068
x_refsource_CONFIRM
SUSE-SR:2008:002
vendor-advisory
x_refsource_SUSE
28195
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=425631
x_refsource_CONFIRM
32274
third-party-advisory
x_refsource_SECUNIA
26942
vdb-entry
x_refsource_BID
28776
third-party-advisory
x_refsource_SECUNIA
28076
third-party-advisory
x_refsource_SECUNIA
42653
vdb-entry
x_refsource_OSVDB
28346
third-party-advisory
x_refsource_SECUNIA
20080105 rPSA-2008-0006-1 libexif
mailing-list
x_refsource_BUGTRAQ
ADV-2008-0947
vdb-entry
x_refsource_VUPEN
http://bugs.gentoo.org/show_bug.cgi?id=202350
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=425621
x_refsource_CONFIRM
oval:org.mitre.oval:def:11029
vdb-entry
signature
x_refsource_OVAL
libexif-exifdataloaddatathumbnail-bo(39167)
vdb-entry
x_refsource_XF
FEDORA-2007-4608
vendor-advisory
x_refsource_FEDORA
https://bugzilla.redhat.com/show_bug.cgi?id=425561
x_refsource_CONFIRM
1019124
vdb-entry
x_refsource_SECTRACK
ADV-2007-4278
vdb-entry
x_refsource_VUPEN
FEDORA-2007-4667
vendor-advisory
x_refsource_FEDORA
29381
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:1165
vendor-advisory
x_refsource_REDHAT
DSA-1487
vendor-advisory
x_refsource_DEBIAN
28636
third-party-advisory
x_refsource_SECUNIA
28266
third-party-advisory
x_refsource_SECUNIA
28400
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:005
vendor-advisory
x_refsource_MANDRIVA
28127
third-party-advisory
x_refsource_SECUNIA
USN-654-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now