CVE-2012-2841

NONE EPSS 92.1%
Published Jul 13, 201213y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jul 13, 2012 13y ago
Last Modified Jun 16, 2026 2w ago

Description

Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow.

Threat Intelligence

EPSS Exploit Probability
92.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-189

Affected Products 1

VendorProductVersionRange
libexif_projectlibexif0.6.20any

References 8

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.