Vulnerabilities > CVE-2005-0664 - Unspecified vulnerability in Libexif 0.6.9
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_121096-05.NASL description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Feb/11/16 last seen 2020-06-01 modified 2020-06-02 plugin id 107874 published 2018-03-12 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107874 title Solaris 10 (x86) : 121096-05 NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2005-300.NASL description Updated libexif packages that fix a buffer overflow issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The libexif package contains the EXIF library. Applications use this library to parse EXIF image files. A bug was found in the way libexif parses EXIF tags. An attacker could create a carefully crafted EXIF image file which could cause image viewers linked against libexif to crash. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0664 to this issue. Users of libexif should upgrade to these updated packages, which contain a backported patch and are not vulnerable to this issue. last seen 2020-06-01 modified 2020-06-02 plugin id 17591 published 2005-03-21 reporter This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/17591 title RHEL 4 : libexif (RHSA-2005:300) NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_121096-04.NASL description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Jul/11/13 last seen 2020-06-01 modified 2020-06-02 plugin id 107873 published 2018-03-12 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107873 title Solaris 10 (x86) : 121096-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_121095-05.NASL description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Feb/11/16 last seen 2020-06-01 modified 2020-06-02 plugin id 107372 published 2018-03-12 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107372 title Solaris 10 (sparc) : 121095-05 NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_121096.NASL description GNOME 2.6.0_x86: GNOME EXIF tag parsing library for digital camera. Date this patch was last updated by Sun : Feb/11/16 This plugin has been deprecated and either replaced with individual 121096 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 22998 published 2006-11-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=22998 title Solaris 10 (x86) : 121096-05 (deprecated) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-200503-17.NASL description The remote host is affected by the vulnerability described in GLSA-200503-17 (libexif: Buffer overflow vulnerability) libexif contains a buffer overflow vulnerability in the EXIF tag validation code. When opening an image with a specially crafted EXIF tag, the lack of validation can cause applications linked to libexif to crash. Impact : A specially crafted EXIF file could crash applications making use of libexif, potentially allowing the execution of arbitrary code with the privileges of the user running the application. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 17319 published 2005-03-14 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/17319 title GLSA-200503-17 : libexif: Buffer overflow vulnerability NASL family Solaris Local Security Checks NASL id SOLARIS10_121095-04.NASL description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Jul/11/13 last seen 2020-06-01 modified 2020-06-02 plugin id 107371 published 2018-03-12 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107371 title Solaris 10 (sparc) : 121095-04 NASL family Debian Local Security Checks NASL id DEBIAN_DSA-709.NASL description Sylvain Defresne discovered a buffer overflow in libexif, a library that parses EXIF files (such as JPEG files with extra tags). This bug could be exploited to crash the application and maybe to execute arbitrary code as well. last seen 2020-06-01 modified 2020-06-02 plugin id 18056 published 2005-04-15 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/18056 title Debian DSA-709-1 : libexif - buffer overflow NASL family Mandriva Local Security Checks NASL id MANDRAKE_MDKSA-2005-064.NASL description A buffer overflow was discovered in the way libexif parses EXIF tags. An attacker could exploit this by creating a special EXIF image file which could cause image viewers linked against libexif to crash. The updated packages have been patched to correct these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 17670 published 2005-04-01 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/17670 title Mandrake Linux Security Advisory : libexif (MDKSA-2005:064) NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_624FE633900611D9A22C0001020EED82.NASL description Sylvain Defresne reports that libexif is vulnerable to a buffer overflow vulnerability due to insufficient input checking. This could lead crash of applications using libexif. last seen 2020-06-01 modified 2020-06-02 plugin id 18957 published 2005-07-13 reporter This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/18957 title FreeBSD : libexif -- buffer overflow vulnerability (624fe633-9006-11d9-a22c-0001020eed82) NASL family Solaris Local Security Checks NASL id SOLARIS10_121095.NASL description GNOME 2.6.0: GNOME EXIF tag parsing library for digital cameras. Date this patch was last updated by Sun : Feb/11/16 This plugin has been deprecated and either replaced with individual 121095 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 22966 published 2006-11-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=22966 title Solaris 10 (sparc) : 121095-05 (deprecated) NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_121093.NASL description GNOME 2.6.0_x86: libexif Patch. Date this patch was last updated by Sun : Nov/15/05 last seen 2020-06-01 modified 2020-06-02 plugin id 23620 published 2006-11-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/23620 title Solaris 9 (x86) : 121093-01
Oval
accepted | 2013-04-29T04:09:10.643-04:00 | ||||||||||||
class | vulnerability | ||||||||||||
contributors |
| ||||||||||||
definition_extensions |
| ||||||||||||
description | Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag. | ||||||||||||
family | unix | ||||||||||||
id | oval:org.mitre.oval:def:10832 | ||||||||||||
status | accepted | ||||||||||||
submitted | 2010-07-09T03:56:16-04:00 | ||||||||||||
title | Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag. | ||||||||||||
version | 26 |
Redhat
advisories |
| ||||
rpms |
|
References
- http://secunia.com/advisories/17705
- http://securitytracker.com/id?1013398
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102041-1
- http://www.debian.org/security/2005/dsa-709
- http://www.gentoo.org/security/en/glsa/glsa-200503-17.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:064
- http://www.redhat.com/support/errata/RHSA-2005-300.html
- http://www.vupen.com/english/advisories/2005/0240
- http://www.vupen.com/english/advisories/2005/2565
- https://bugzilla.ubuntu.com/show_bug.cgi?id=7152
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10832
- https://usn.ubuntu.com/91-1/