exif

Fuzzing/CVE 분석

Fuzzing101 Exercise2_2

CVE-2012-2836 Description The exif_data_load_data function in exif-data.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. 해석하면 exif-data.c의 exif_data_load_data에서 발생하는 취약점으로 0.6.21 이전 버전의 EXIF Tag Parsing Library에서 발생..

Fuzzing/CVE 분석

Fuzzing101 Exercise2_1

CVE-2009-3895 Description Heap-based buffer overflow in the exif_entry_fix function (aka the tag fixup routine) in libexif/exif-entry.c in libexif 0.6.18 allows remote attackers to cause a denial of service or possibly execute arbitrary code via an invalid EXIF image. NOTE: some of these details are obtained from third party information. libexif 0.6.18의 libexif/exif-entry.c 에 있는 exif_entry_fix 함..

K0n9
'exif' 태그의 글 목록