CVE-2018-16554

Posted on 2018년 9월 16일2018년 9월 16일 by admin

CVE-2018-16554

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAG_GPS_ALT handling.

Source: CVE-2018-16554

답글 남기기 응답 취소