CVE DATABASE / CVE-2007-0164
CVE-2007-0164
CVSS 7.8 · HIGH
Summary
Camouflage 1.2.1 embeds password information in the carrier file, which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing certain bytes of the JPEG image with alternate password information.
CVSS 2.0 breakdown
| Base score | 7.8 (HIGH) |
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | COMPLETE |
| Integrity | NONE |
| Availability | NONE |
Affected products
Camouflage camouflage
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://homepage.mac.com/adonismac/Advisory/steg/camouflage.html
- http://osvdb.org/32651
- http://secunia.com/advisories/23578
- http://www.securityfocus.com/archive/1/456541/100/0/threaded
- http://www.securityfocus.com/bid/21939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31375
Data: NIST NVD. NVD last modified 2026-04-23. Always verify against the vendor advisory before acting.