Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2645 — Libexif vulnerability

9 documents9 sources

Severity

9.3CRITICALNVD

EPSS

32.1%

top 3.17%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Libexif Project Libexif Libexif

Timeline

PublishedMay 14

Latest updateMay 1

Description

Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶Debianlibexif_project/libexif< 0.6.15-1+3

▶NVDlibexif/libexif6 versions+5

Patches

Patch: secunia.com ↗Patch: sourceforge.net ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-5x4g-m68v-9h8f: Integer overflow in the exif_data_load_data_entry function in exif-data↗2022-05-01

▶

CVEList

CVE-2007-2645: Integer overflow in the exif_data_load_data_entry function in exif-data↗2007-05-14

▶

OSV

CVE-2007-2645: Integer overflow in the exif_data_load_data_entry function in exif-data↗2007-05-14

▶

💥Exploits & PoCs

Exploit-DB

LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow↗2007-05-11

▶

📋Vendor Advisories

Ubuntu

libexif vulnerability↗2007-06-11

▶

Red Hat

Interger overflow in libexif↗2007-05-14

▶

Debian

CVE-2007-2645: libexif - Integer overflow in the exif_data_load_data_entry function in exif-data.c in lib...↗2007

▶

💬Community

Bugzilla

CVE-2007-2645 Interger overflow in libexif↗2007-05-14

▶