xiaoqx - Security Researcher - Exploit Intelligence Platform

CVE-2017-17724 WRITEUP MEDIUM WRITEUP

Exiv2 0.26 - Heap-Based Buffer Over-Read in IptcData::printStructure

In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file.

CVSS 6.5

View Code

CVE-2018-9303 WRITEUP MEDIUM WRITEUP

exiv2 < 0.26 - Reachable Assertion in BigTiffImage::readData

In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an abort.

CVSS 6.5

View Code

CVE-2018-9304 WRITEUP MEDIUM WRITEUP

exiv2 < 0.26 - Denial of Service via BigTiffImage IFD Processing

In Exiv2 0.26, a divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp could result in denial of service.

CVSS 6.5

View Code

CVE-2018-9305 WRITEUP HIGH WRITEUP

exiv2 < 0.26 - Out-of-bounds Read in IptcData::printStructure

In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case.

CVSS 8.1

View Code