Upstream information

CVE-2005-0664 at MITRE

Description

Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	2.6
Vector	AV:N/AC:H/Au:N/C:N/I:N/A:P
Access Vector	Network
Access Complexity	High
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Partial

SUSE Bugzilla entries: 222089 [RESOLVED / FIXED], 70887 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SR:2005:011, published Fri, 15 Apr 2005 13:00:00 +0000

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 01:05:29 2013
CVE page last modified: Fri Feb 9 11:08:40 2024

CVE-2005-0664

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

SUSE Security Advisories:

SUSE Timeline for this CVE