Vulnerability Description
Camouflage 1.2.1 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing certain bytes of the JPEG image with alternate password information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Camouflage | Camouflage | 1.2.1 |
References
- http://homepage.mac.com/adonismac/Advisory/steg/camouflage.htmlExploitVendor Advisory
- http://osvdb.org/32651
- http://secunia.com/advisories/23578Vendor Advisory
- http://www.securityfocus.com/archive/1/456541/100/0/threaded
- http://www.securityfocus.com/bid/21939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31375
- http://homepage.mac.com/adonismac/Advisory/steg/camouflage.htmlExploitVendor Advisory
- http://osvdb.org/32651
- http://secunia.com/advisories/23578Vendor Advisory
- http://www.securityfocus.com/archive/1/456541/100/0/threaded
- http://www.securityfocus.com/bid/21939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31375
FAQ
What is CVE-2007-0164?
CVE-2007-0164 is a vulnerability with a CVSS score of 7.8 (HIGH). Camouflage 1.2.1 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing certain bytes of t...
How severe is CVE-2007-0164?
CVE-2007-0164 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0164?
Check the references section above for vendor advisories and patch information. Affected products include: Camouflage Camouflage.