WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Numeric Errors Vulnerability (CVE-2011-4566)

Description

Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.

Remediation

References

Related Vulnerabilities

MySQL CVE-2015-0501 Vulnerability (CVE-2015-0501)

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.113)

WordPress Plugin WP Post to PDF Enhanced Cross-Site Scripting (1.0.5)

WordPress Plugin BetterLinks-Shorten, Track and Manage any URL Cross-Site Scripting (1.2.5)

Jetty CVE-2023-26049 Vulnerability (CVE-2023-26049)

Severity

Medium

Classification

CVE-2011-4566

Tags

Missing Update Known Vulnerabilities