CVE-2008-2696

Name of the Vulnerable Software and Affected Versions Exiv2 version 0.16

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, by exploiting a divide-by-zero error. This is achieved by inserting a zero value in Nikon lens information within the metadata of an image. The error is related to the "pretty printing" functionality and the RationalValue::toLong function.

Recommendations For Exiv2 version 0.16, consider disabling the "pretty printing" feature or restricting access to metadata editing until a patch is available. Avoid using the RationalValue::toLong function with untrusted image metadata to minimize the risk of exploitation.