CVE-2005-0664
published 2005-05-02CVE-2005-0664: Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial…
low2.6CVSS 3.1
AVNACHAuNCNINAP
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libexif | < libexif 0.6.9-5 (bookworm) | libexif 0.6.9-5 (bookworm) |
| libexif | libexif | — | — |
| libexif_project | libexif | >= 0 < 0.6.9-5 | 0.6.9-5 |
| libexif_project | libexif | >= 0 < 0.6.9-5 | 0.6.9-5 |
| libexif_project | libexif | >= 0 < 0.6.9-5 | 0.6.9-5 |
| libexif_project | libexif | >= 0 < 0.6.9-5 | 0.6.9-5 |
CVSS provenance
nvd2.6LOWAV:N/AC:H/Au:N/C:N/I:N/A:P
osv2.6LOW