Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libexif vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-2840
Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) prior to 0.6.21 allows remote malicious users to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image.
Libexif Project Libexif 0.6.14
Libexif Project Libexif 0.6.15
Libexif Project Libexif 0.6.16
Libexif Project Libexif 0.6.18
Libexif Project Libexif 0.6.19
Libexif Project Libexif
7.5
CVSSv2
CVE-2012-2841
Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote malicious users to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, lea...
Libexif Project Libexif 0.6.20
6.8
CVSSv2
CVE-2009-3895
Heap-based buffer overflow in the exif_entry_fix function (aka the tag fixup routine) in libexif/exif-entry.c in libexif 0.6.18 allows remote malicious users to cause a denial of service or possibly execute arbitrary code via an invalid EXIF image. NOTE: some of these details are...
Libexif Project Libexif 0.6.18
4.3
CVSSv2
CVE-2007-6351
libexif 0.6.16 and previous versions allows context-dependent malicious users to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c.
Libexif Project Libexif 0.6.14
Libexif Project Libexif 0.6.15
Libexif Project Libexif
6.8
CVSSv2
CVE-2007-6352
Integer overflow in libexif 0.6.16 and previous versions allows context-dependent malicious users to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
Libexif Libexif
7.5
CVSSv2
CVE-2007-6353
Integer overflow in exif.cpp in exiv2 library allows context-dependent malicious users to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow.
Exiv2 Exiv2
6.8
CVSSv2
CVE-2006-4168
Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif prior to 0.6.16 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-base...
Libexif Libexif 0.6.12
Libexif Libexif 0.6.13
Libexif Libexif 0.6.11
Libexif Libexif 0.6.9
Libexif Libexif 0.6.14
Libexif Libexif 0.6.15
9.3
CVSSv2
CVE-2007-2645
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif prior to 0.6.14 allows user-assisted remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable...
Libexif Libexif 0.6.12
Libexif Libexif 0.6.13
Libexif Libexif 0.6.9
Libexif Libexif 0.5
Libexif Libexif 0.5.12
Libexif Libexif 0.6.11
1 EDB exploit
2.6
CVSSv2
CVE-2005-0664
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
Libexif Libexif 0.6.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3