CVE-2018-16554

Published: Sep 16, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAG_GPS_ALT handling.

Affected (1)

Products: Jhead Project: Jhead

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jhead Project Jhead	Version 3.00

Related CWEs

Use of Externally-Controlled Format String

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

References (6)

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908176

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html

Source: cve@mitre.org

https://nimo-zhang.github.io/2018/09/07/bug-analysis-1/#more

Source: cve@mitre.org

ExploitPatchThird Party Advisory

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908176

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://nimo-zhang.github.io/2018/09/07/bug-analysis-1/#more

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchThird Party Advisory

Timeline

No history available yet.