CVE-2006-4168
EPSS 7.5%libexif
發布日:2007/6/14修改日:2026/3/9
描述
Integer overflow in the exif_data_load_data_entry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow.
受影響套件(2)
- Debian/libexiffrom 0, < 0.6.16-1
- Debian/libexiffrom 0, < 0.6.13-5etch1