5

CVE-2006-6297

Stack consumption vulnerability in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics 3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service (stack consumption) via a crafted EXIF section in a JPEG file, which results in an infinite recursion.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
KdeKdegraphics Version3.2
KdeKdegraphics Version3.4.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.15% 0.798
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/23213
Vendor Advisory
http://www.novell.com/linux/security/advisories/2006_73_mono.html
Vendor Advisory
http://secunia.com/advisories/23203
Vendor Advisory
http://secunia.com/advisories/23300
Vendor Advisory
http://secunia.com/advisories/23728
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200701-05.xml
http://securitytracker.com/id?1017325
http://www.kde.org/info/security/advisory-20061129-1.txt
http://www.mandriva.com/security/advisories?name=MDKSA-2006:227
http://www.securityfocus.com/bid/21384
http://www.vupen.com/english/advisories/2006/4810
Vendor Advisory