The cdf_read_short_sector function in cdf.c in file prior to 5.19, as used in the Fileinfo component in PHP prior to 5.4.30 and 5.5.x prior to 5.5.14, allows remote malicious users to cause a denial of service (assertion failure and application exit) via a crafted CDF file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
christos zoulas file |
||
php php |
||
oracle linux 7 |
||
opensuse opensuse 11.4 |
||
debian debian linux 8.0 |
||
debian debian linux 7.0 |