Vulnerabilities > CVE-2008-2696 - Numeric Errors vulnerability in Exiv2 0.16
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Exiv2 0.16 allows user-assisted remote attackers to cause a denial of service (divide-by-zero and application crash) via a zero value in Nikon lens information in the metadata of an image, related to "pretty printing" and the RationalValue::toLong function.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Nessus
NASL family SuSE Local Security Checks NASL id SUSE_11_0_EXIV2-081022.NASL description This update of exiv2 solves a denial of service bug that can be triggered by using crafted metadata. (CVE-2008-2696) last seen 2020-06-01 modified 2020-06-02 plugin id 39958 published 2009-07-21 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/39958 title openSUSE Security Update : exiv2 (exiv2-267) NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-655-1.NASL description Meder Kydyraliev discovered that exiv2 did not correctly handle certain EXIF headers. If a user or automated system were tricked into processing a specially crafted image, a remote attacker could cause the application linked against libexiv2 to crash, leading to a denial of service, or possibly executing arbitrary code with user privileges. (CVE-2007-6353) Joakim Bildrulle discovered that exiv2 did not correctly handle Nikon lens EXIF information. If a user or automated system were tricked into processing a specially crafted image, a remote attacker could cause the application linked against libexiv2 to crash, leading to a denial of service. (CVE-2008-2696). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 37662 published 2009-04-23 reporter Ubuntu Security Notice (C) 2009-2019 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/37662 title Ubuntu 7.04 / 7.10 / 8.04 LTS : exiv2 vulnerabilities (USN-655-1) NASL family SuSE Local Security Checks NASL id SUSE_LIBEXIV2-5707.NASL description This update of libexiv2 solves a denial of service bug that can be triggered by using crafted metadata. (CVE-2008-2696) last seen 2020-06-01 modified 2020-06-02 plugin id 34509 published 2008-10-29 reporter This script is Copyright (C) 2008-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/34509 title openSUSE 10 Security Update : libexiv2 (libexiv2-5707) NASL family Mandriva Local Security Checks NASL id MANDRIVA_MDVSA-2008-119.NASL description A flaw was found in exiv2 that would cause exiv2, or applications linked to libexiv2, to crash on image files with certain metadata in the image (CVE-2008-2696). The updated packages have been patched to prevent this issue. last seen 2020-06-01 modified 2020-06-02 plugin id 36938 published 2009-04-23 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/36938 title Mandriva Linux Security Advisory : exiv2 (MDVSA-2008:119)
References
- http://bugzilla.gnome.org/show_bug.cgi?id=524715
- http://dev.robotbattle.com/bugs/view.php?id=0000546
- http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html
- http://secunia.com/advisories/30519
- http://secunia.com/advisories/32273
- http://www.exiv2.org/changelog.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:119
- http://www.securityfocus.com/bid/29586
- http://www.ubuntu.com/usn/usn-655-1
- http://www.vupen.com/english/advisories/2008/1766/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42885