Description
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2024-49068 Vulnerability (CVE-2024-49068)
Jenkins Improper Input Validation Vulnerability (CVE-2015-1808)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0702)
Rukovoditel Improper Input Validation Vulnerability (CVE-2020-11819)
WordPress Plugin Photo Gallery by Ays-Responsive Image Gallery SQL Injection (4.4.3)