mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-04 09:48:02 +02:00
0xMarcio
1007 B
1007 B
CVE-2019-9143
Description
An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::printTiffStructure in the file image.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.
POC
Reference
- https://github.com/Exiv2/exiv2/issues/711
- https://github.com/Exiv2/exiv2/issues/711
- https://research.loginsoft.com/bugs/uncontrolled-recursion-loop-in-exiv2imageprinttiffstructure-exiv2-0-27/
- https://research.loginsoft.com/bugs/uncontrolled-recursion-loop-in-exiv2imageprinttiffstructure-exiv2-0-27/
Github
No PoCs found on GitHub currently.