CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-6355

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1410%
EPSS Percentile27.21th
Published2007年12月18日
Last Modified2026年4月23日

Vulnerability Description

Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6354.

Affected Platforms (CPE)

📦
Aertherwide

Exiftags

<= 1.00
📦
Aertherwide

Exiftags

= 0.80
📦
Aertherwide

Exiftags

= 0.90
📦
Aertherwide

Exiftags

= 0.91
📦
Aertherwide

Exiftags

= 0.92
📦
Aertherwide

Exiftags

= 0.93
📦
Aertherwide

Exiftags

= 0.94
📦
Aertherwide

Exiftags

= 0.95
📦
Aertherwide

Exiftags

= 0.96
📦
Aertherwide

Exiftags

= 0.97
📦
Aertherwide

Exiftags

= 0.98
📦
Aertherwide

Exiftags

= 0.99

References & Advisories

🔗 http://bugs.gentoo.org/show_bug.cgi?id=202354
🔗 http://johnst.org/sw/exiftags/CHANGES
🔗 http://secunia.com/advisories/28110
🔗 http://secunia.com/advisories/28268
🔗 http://secunia.com/advisories/29580
🔗 http://security.gentoo.org/glsa/glsa-200712-17.xml
🔗 http://www.debian.org/security/2008/dsa-1533
🔗 http://www.securityfocus.com/bid/26892

相關漏洞威脅

CVE-2007-635410.0

Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" ...

CVE-2007-63565.0

exiftags before 1.01 allows attackers to cause a denial of service (infinite loop) via recursive IFD references in the EXIF data i...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.

CVE-2007-158710.0

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the...