Description
Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6355.
Affected products
- aertherwide / exiftags1.00
- aertherwide / exiftags0.80 – 0.80
- aertherwide / exiftags0.90 – 0.90
- aertherwide / exiftags0.91 – 0.91
- aertherwide / exiftags0.92 – 0.92
- aertherwide / exiftags0.93 – 0.93
- aertherwide / exiftags0.94 – 0.94
- aertherwide / exiftags0.95 – 0.95
- aertherwide / exiftags0.96 – 0.96
- aertherwide / exiftags0.97 – 0.97
- aertherwide / exiftags0.98 – 0.98
- aertherwide / exiftags0.99 – 0.99
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/29580
- MISChttp://bugs.gentoo.org/show_bug.cgi?id=202354
- VENDOR_ADVISORYhttp://secunia.com/advisories/28110
- VENDOR_ADVISORYhttp://www.debian.org/security/2008/dsa-1533
- VENDOR_ADVISORYhttp://secunia.com/advisories/28268
- MISChttp://security.gentoo.org/glsa/glsa-200712-17.xml
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/4251
- MISChttp://johnst.org/sw/exiftags/CHANGES
- MISChttp://www.securityfocus.com/bid/26892