Summary
Check the version of exiv2
Solution
Please Install the Updated Packages.
Insight
It was discovered that Exiv2 incorrectly
handled certain tag values in video files. If a user or automated system were tricked into opening a specially-crafted video file, a remote attacker could cause Exiv2 to crash, resulting in a denial of service.
Affected
exiv2 on Ubuntu 14.10
Detection
Get the installed version with the help of
detect NVT and check if the version is vulnerable or not.
Severity
Classification
-
CVE CVE-2014-9449 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities