CVE-2008-2696

2008-06-13 21:41:00 2017-08-08 03:31:14

Exiv2 0.16 allows user-assisted remote attackers to cause a denial of service (divide-by-zero and application crash) via a zero value in Nikon lens information in the metadata of an image, related to "pretty printing" and the RationalValue::toLong function.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Exiv2 Exiv2 0.16 (not an official CPE)

Exiv2 - Exiv2

Advisory	Patch	Confirmed	Link
			exiv2-printing-dos(42885)
			ADV-2008-1766
			USN-655-1
			29586
			MDVSA-2008:119
			http://www.exiv2.org/changelog.html
			SUSE-SR:2008:023
			http://dev.robotbattle.com/bugs/view.php?id=0000546
			http://bugzilla.gnome.org/show_bug.cgi?id=524715

CVE-2008-2696

2008-06-13 21:41:00 2017-08-08 03:31:14

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)