Description

Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.

Remediation

References

CVE-2014-1943

Related Vulnerabilities

TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4614)

Oracle Application Server CVE-2002-1637 Vulnerability (CVE-2002-1637)

WordPress Plugin EWWW Image Optimizer Remote Code Execution (2.8.3)

Oracle Application Server CVE-2007-5523 Vulnerability (CVE-2007-5523)

Oracle JRE CVE-2012-1726 Vulnerability (CVE-2012-1726)

Severity

Medium

Classification

CVE-2014-1943 CWE-755

Tags

Missing Update Known Vulnerabilities