Description

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

Remediation

References

CVE-2005-1043

Related Vulnerabilities

WordPress Plugin Feedweb Unspecified Vulnerability (3.0.10)

WordPress Plugin ActiveHelper LiveHelp Live Chat Multiple Cross-Site Scripting Vulnerabilities (3.1.0)

WordPress Plugin Advanced Custom Fields PRO Multiple Security Bypass Vulnerabilities (5.10)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5480)

WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)

Severity

Medium

Classification

CVE-2005-1043

Tags

Missing Update Known Vulnerabilities