QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2011-0708

Back to search

CVE-2011-0708

Published: Mar 20, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD) that triggers a buffer over-read.

VendorProductVersions

n/a

n/a

affected
n/a

References

HPSBOV02763
vendor-advisory
x_refsource_HP
FEDORA-2011-3636
vendor-advisory
x_refsource_FEDORA
ADV-2011-0764
vdb-entry
x_refsource_VUPEN
FEDORA-2011-3614
vendor-advisory
x_refsource_FEDORA
16261
exploit
x_refsource_EXPLOIT-DB
MDVSA-2011:053
vendor-advisory
x_refsource_MANDRIVA
DSA-2266
vendor-advisory
x_refsource_DEBIAN
ADV-2011-0890
vdb-entry
x_refsource_VUPEN
SSRT100826
vendor-advisory
x_refsource_HP
APPLE-SA-2011-10-12-3
vendor-advisory
x_refsource_APPLE
RHSA-2011:1423
vendor-advisory
x_refsource_REDHAT
FEDORA-2011-3666
vendor-advisory
x_refsource_FEDORA
MDVSA-2011:052
vendor-advisory
x_refsource_MANDRIVA
8114
third-party-advisory
x_refsource_SREASON
46365
vdb-entry
x_refsource_BID
ADV-2011-0744
vdb-entry
x_refsource_VUPEN
RHSA-2012:0071
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2011-0708 - Security Vulnerability | QwikSec