Description
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Remediation
References
Related Vulnerabilities
WordPress Plugin External Links-nofollow, noopener & new window Cross-Site Request Forgery (2.57)
MediaWiki CVE-2021-42049 Vulnerability (CVE-2021-42049)
WordPress Plugin NAB Transact Security Bypass (2.1.0)
XWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-32068)
Oracle Database Server CVE-2007-5512 Vulnerability (CVE-2007-5512)