Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif prior to 0.6.14 allows user-assisted remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libexif libexif 0.6.12 |
||
libexif libexif 0.6.13 |
||
libexif libexif 0.6.9 |
||
libexif libexif 0.5 |
||
libexif libexif 0.5.12 |
||
libexif libexif 0.6.11 |