NVD

Id
86312  
Name
CVE-2017-9239  
Description
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-06-12  
Published
2017-05-26  
Modified Date
2017-06-08  
Seq
2017-9239  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
419281 86312 CVE-2017-7380 97296  View
419282 86312 CVE-2017-7380 https://blogs.gentoo.org/ago/2017/03/31/podofo-four-null-pointer-dereference  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
68290 JVNDB-2017-004547 Exiv2 におけるゼロ除算に関する脆弱性 Exiv2 には、ゼロ除算に関する脆弱性が存在します。 CVE-2017-9239 0 CVE-2017-9239 86312 4.3 4.3 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-004547.html 2017-05-25 2017-06-28 View