CVE

Id
29709  
CVE No.
CVE-2007-6352  
Status
Candidate  
Description
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.  
Phase
Assigned (20071214)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
313371 29709 CVE-2007-6352 BUGTRAQ:20080105 rPSA-2008-0006-1 libexif  View
313372 29709 CVE-2007-6352 URL:http://www.securityfocus.com/archive/1/archive/1/485822/100/0/threaded  View
313373 29709 CVE-2007-6352 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=425561  View
313374 29709 CVE-2007-6352 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=425561  View
313375 29709 CVE-2007-6352 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=425621  View
313376 29709 CVE-2007-6352 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=425631  View
313377 29709 CVE-2007-6352 CONFIRM:http://bugs.gentoo.org/show_bug.cgi?id=202350  View
313378 29709 CVE-2007-6352 CONFIRM:https://issues.rpath.com/browse/RPL-2068  View
313379 29709 CVE-2007-6352 DEBIAN:DSA-1487  View
313380 29709 CVE-2007-6352 URL:http://www.debian.org/security/2008/dsa-1487  View
313381 29709 CVE-2007-6352 FEDORA:FEDORA-2007-4608  View
313382 29709 CVE-2007-6352 URL:https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00597.html  View
313383 29709 CVE-2007-6352 FEDORA:FEDORA-2007-4667  View
313384 29709 CVE-2007-6352 URL:https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00626.html  View
313385 29709 CVE-2007-6352 GENTOO:GLSA-200712-15  View
313386 29709 CVE-2007-6352 URL:http://security.gentoo.org/glsa/glsa-200712-15.xml  View
313387 29709 CVE-2007-6352 MANDRIVA:MDVSA-2008:005  View
313388 29709 CVE-2007-6352 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:005  View
313389 29709 CVE-2007-6352 REDHAT:RHSA-2007:1165  View
313390 29709 CVE-2007-6352 URL:http://www.redhat.com/support/errata/RHSA-2007-1165.html  View
313391 29709 CVE-2007-6352 REDHAT:RHSA-2007:1166  View
313392 29709 CVE-2007-6352 URL:http://www.redhat.com/support/errata/RHSA-2007-1166.html  View
313393 29709 CVE-2007-6352 SUNALERT:234701  View
313394 29709 CVE-2007-6352 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-234701-1  View
313395 29709 CVE-2007-6352 SUSE:SUSE-SR:2008:002  View
313396 29709 CVE-2007-6352 URL:http://www.novell.com/linux/security/advisories/suse_security_summary_report.html  View
313397 29709 CVE-2007-6352 UBUNTU:USN-654-1  View
313398 29709 CVE-2007-6352 URL:http://www.ubuntu.com/usn/usn-654-1  View
313399 29709 CVE-2007-6352 BID:26942  View
313400 29709 CVE-2007-6352 URL:http://www.securityfocus.com/bid/26942  View
313401 29709 CVE-2007-6352 OVAL:oval:org.mitre.oval:def:11029  View
313402 29709 CVE-2007-6352 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11029  View
313403 29709 CVE-2007-6352 VUPEN:ADV-2007-4278  View
313404 29709 CVE-2007-6352 URL:http://www.vupen.com/english/advisories/2007/4278  View
313405 29709 CVE-2007-6352 VUPEN:ADV-2008-0947  View
313406 29709 CVE-2007-6352 URL:http://www.vupen.com/english/advisories/2008/0947/references  View
313407 29709 CVE-2007-6352 OSVDB:42653  View
313408 29709 CVE-2007-6352 URL:http://osvdb.org/42653  View
313409 29709 CVE-2007-6352 OVAL:oval:org.mitre.oval:def:4814  View
313410 29709 CVE-2007-6352 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4814  View
313411 29709 CVE-2007-6352 SECTRACK:1019124  View
313412 29709 CVE-2007-6352 URL:http://www.securitytracker.com/id?1019124  View
313413 29709 CVE-2007-6352 SECUNIA:28076  View
313414 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28076  View
313415 29709 CVE-2007-6352 SECUNIA:28127  View
313416 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28127  View
313417 29709 CVE-2007-6352 SECUNIA:28195  View
313418 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28195  View
313419 29709 CVE-2007-6352 SECUNIA:28266  View
313420 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28266  View
313421 29709 CVE-2007-6352 SECUNIA:28346  View
313422 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28346  View
313423 29709 CVE-2007-6352 SECUNIA:28400  View
313424 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28400  View
313425 29709 CVE-2007-6352 SECUNIA:28636  View
313426 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28636  View
313427 29709 CVE-2007-6352 SECUNIA:28776  View
313428 29709 CVE-2007-6352 URL:http://secunia.com/advisories/28776  View
313429 29709 CVE-2007-6352 SECUNIA:29381  View
313430 29709 CVE-2007-6352 URL:http://secunia.com/advisories/29381  View
313431 29709 CVE-2007-6352 SECUNIA:32274  View
313432 29709 CVE-2007-6352 URL:http://secunia.com/advisories/32274  View
313433 29709 CVE-2007-6352 XF:libexif-exifdataloaddatathumbnail-bo(39167)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
54285 JVNDB-2007-002977 exiftags における詳細不明な脆弱性 exiftags には、"不正なメモリアクセス" を誘発する "フィールドオフセットオーバーフロー" が発生するため、詳細不明な脆弱性が存在します。 CVE-2007-6354 29709 10 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002977.html  View