Secunia
Login
|
|
CVE Reference: CVE-2009-3895 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-3895 |
|
|
Description: Heap-based buffer overflow in the exif_entry_fix function (aka the tag fixup routine) in libexif/exif-entry.c in libexif 0.6.18 allows remote attackers to cause a denial of service or possibly execute arbitrary code via an invalid EXIF image. NOTE: some of these details are obtained from third party information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/54275 SAID Secunia Advisory: SA37378 OSVDB 59956 MLIST http://sourceforge.net/mailarchive/message.php?msg_name=20091113072359.GA22681%40coneharvesters.com http://www.openwall.com/lists/oss-security/2009/11/19/2 CONFIRM http://bugs.debian.org/557137 http://bugs.gentoo.org/show_bug.cgi?id=293190 http://libexif.cvs.sourceforge.net/viewvc/libexif/libexif/NEWS?view=markup&pathrev=libexif-0_6_19-release BID 37022 |
|
| Return to the previous page. |
