Heap-based buffer overflow in libexif 0.6.20 due to integer underflow in exif_entry_get_value function

Heap-based buffer overflow in libexif 0.6.20 due to integer underflow in exif_entry_get_value function

CVE-2012-2841 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.