CVE-2007-0164 Information

Description

Camouflage 1.2.1 embeds password information in the carrier file which allows remote attackers to bypass authentication requirements and decrypt embedded steganography by replacing certain bytes of the JPEG image with alternate password information.

Reference

http://homepage.mac.com/adonismac/Advisory/steg/camouflage.html http://osvdb.org/32651 http://secunia.com/advisories/23578 http://www.securityfocus.com/archive/1/456541/100/0/threaded http://www.securityfocus.com/bid/21939 https://exchange.xforce.ibmcloud.com/vulnerabilities/31375