Description

The exif_ifd_make_value function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a crafted JPEG image with TIFF thumbnail data that is improperly handled by the exif_thumbnail function.

Remediation

References

CVE-2014-3670

Related Vulnerabilities

Drupal Core 4.7.x Security Bypass (4.7.0 - 4.7.7)

phpList Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-2916)

WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6)

WordPress Plugin Edwiser Bridge-WordPress Moodle LMS Integration Unspecified Vulnerability (2.0.7)

WordPress Plugin WP-Footnotes 'admin_panel.php' Multiple Remote Vulnerabilities (2.2)

Severity

Medium

Classification

CVE-2014-3670 CWE-119

Tags

Missing Update Known Vulnerabilities