Published: 14/04/2005 Updated: 30/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

exif.c in PHP prior to 4.3.11 allows remote malicious users to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 4.3.1
php php 4.3.10
php php 4.3.2
php php 4.3.9
sgi propack 3.0
php php 4.3.0
php php 4.3.7
php php 4.3.8
php php 4.3.5
php php 4.3.6
php php 4.3.3
php php 4.3.4
conectiva linux 10.0
conectiva linux 9.0
apple mac os x server 10.3.9
apple mac os x server 10.4
suse suse linux 4.2
suse suse linux 4.3
suse suse linux 4.4
suse suse linux 6.1
suse suse linux 6.4
apple mac os x 10.4
apple mac os x 10.4.1
suse suse linux 3.0
suse suse linux 4.0
suse suse linux 5.3
suse suse linux 6.0
suse suse linux 7.0
suse suse linux 7.1
suse suse linux 7.3
suse suse linux 9.0
suse suse linux 9.1
apple mac os x 10.3.9
suse suse linux 1.0
suse suse linux 2.0
suse suse linux 5.1
suse suse linux 5.2
suse suse linux 6.3
suse suse linux 8.0
suse suse linux 9.2
suse suse linux 7.2
suse suse linux 8.2
apple mac os x server 10.4.1
peachtree peachtree linux release_1
suse suse linux 4.4.1
suse suse linux 5.0
suse suse linux 6.2
suse suse linux 8.1
suse suse linux 9.3

An integer overflow was discovered in the exif_process_IFD_TAG() function in PHP4’s EXIF module EXIF tags with a specially crafted “Image File Directory” (IFD) tag caused a buffer overflow which could have been exploited to execute arbitrary code with the privileges of the PHP4 server (CAN-2005-1042) ...

Synopsis PHP security update Type/Severity Security Advisory: Moderate Topic Updated PHP packages that fix various security issues are now availableThis update has been rated as having moderate security impact by the RedHat Security Response Team Description PHP is an HTML-embedded script ...

NVD-CWE-Other https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=154025 http://cvs.php.net/diff.php/php-src/ext/exif/exif.c?r1=1.118.2.29&r2=1.118.2.30&ty=u http://www.gentoo.org/security/en/glsa/glsa-200504-15.xml http://www.redhat.com/support/errata/RHSA-2005-406.html http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html http://www.mandriva.com/security/advisories?name=MDKSA-2005:072 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10307 https://usn.ubuntu.com/112-1/https://usn.ubuntu.com/112-1/https://nvd.nist.gov

CVE-2005-1043

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect