ID CVE-2005-0664
Summary Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
References
Vulnerable Configurations
  • cpe:2.3:a:libexif:libexif:0.6.9
    cpe:2.3:a:libexif:libexif:0.6.9
CVSS
Base: 2.6 (as of 09-06-2005 - 09:57)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_121093.NASL
    description GNOME 2.6.0_x86: libexif Patch. Date this patch was last updated by Sun : Nov/15/05
    last seen 2018-09-02
    modified 2014-08-30
    plugin id 23620
    published 2006-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=23620
    title Solaris 9 (x86) : 121093-01
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2005-064.NASL
    description A buffer overflow was discovered in the way libexif parses EXIF tags. An attacker could exploit this by creating a special EXIF image file which could cause image viewers linked against libexif to crash. The updated packages have been patched to correct these issues.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 17670
    published 2005-04-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=17670
    title Mandrake Linux Security Advisory : libexif (MDKSA-2005:064)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-709.NASL
    description Sylvain Defresne discovered a buffer overflow in libexif, a library that parses EXIF files (such as JPEG files with extra tags). This bug could be exploited to crash the application and maybe to execute arbitrary code as well.
    last seen 2019-02-21
    modified 2018-08-09
    plugin id 18056
    published 2005-04-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=18056
    title Debian DSA-709-1 : libexif - buffer overflow
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2005-300.NASL
    description Updated libexif packages that fix a buffer overflow issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The libexif package contains the EXIF library. Applications use this library to parse EXIF image files. A bug was found in the way libexif parses EXIF tags. An attacker could create a carefully crafted EXIF image file which could cause image viewers linked against libexif to crash. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0664 to this issue. Users of libexif should upgrade to these updated packages, which contain a backported patch and are not vulnerable to this issue.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 17591
    published 2005-03-21
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=17591
    title RHEL 4 : libexif (RHSA-2005:300)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_121095.NASL
    description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Feb/11/16 This plugin has been deprecated and either replaced with individual 121095 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 22966
    published 2006-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22966
    title Solaris 10 (sparc) : 121095-05 (deprecated)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_624FE633900611D9A22C0001020EED82.NASL
    description Sylvain Defresne reports that libexif is vulnerable to a buffer overflow vulnerability due to insufficient input checking. This could lead crash of applications using libexif.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 18957
    published 2005-07-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=18957
    title FreeBSD : libexif -- buffer overflow vulnerability (624fe633-9006-11d9-a22c-0001020eed82)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_121096-05.NASL
    description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Feb/11/16
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107874
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107874
    title Solaris 10 (x86) : 121096-05
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_121095-04.NASL
    description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Jul/11/13
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107371
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107371
    title Solaris 10 (sparc) : 121095-04
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200503-17.NASL
    description The remote host is affected by the vulnerability described in GLSA-200503-17 (libexif: Buffer overflow vulnerability) libexif contains a buffer overflow vulnerability in the EXIF tag validation code. When opening an image with a specially crafted EXIF tag, the lack of validation can cause applications linked to libexif to crash. Impact : A specially crafted EXIF file could crash applications making use of libexif, potentially allowing the execution of arbitrary code with the privileges of the user running the application. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 17319
    published 2005-03-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=17319
    title GLSA-200503-17 : libexif: Buffer overflow vulnerability
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_121096.NASL
    description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Feb/11/16 This plugin has been deprecated and either replaced with individual 121096 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 22998
    published 2006-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22998
    title Solaris 10 (x86) : 121096-05 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_121096-04.NASL
    description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Jul/11/13
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107873
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107873
    title Solaris 10 (x86) : 121096-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_121095-05.NASL
    description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Feb/11/16
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107372
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107372
    title Solaris 10 (sparc) : 121095-05
oval via4
accepted 2013-04-29T04:09:10.643-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 4
    oval oval:org.mitre.oval:def:11831
  • comment CentOS Linux 4.x
    oval oval:org.mitre.oval:def:16636
  • comment Oracle Linux 4.x
    oval oval:org.mitre.oval:def:15990
description Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
family unix
id oval:org.mitre.oval:def:10832
status accepted
submitted 2010-07-09T03:56:16-04:00
title Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
version 23
redhat via4
advisories
rhsa
id RHSA-2005:300
refmap via4
debian DSA-709
gentoo GLSA-200503-17
mandrake MDKSA-2005:064
misc https://bugzilla.ubuntu.com/show_bug.cgi?id=7152
sectrack 1013398
secunia 17705
sunalert 102041
ubuntu USN-91-1
vupen
  • ADV-2005-0240
  • ADV-2005-2565
Last major update 07-03-2011 - 21:20
Published 02-05-2005 - 00:00
Last modified 03-10-2018 - 17:29
Back to Top