Description

The exif_read_data function in the Exif module in PHP before 4.4.1 allows remote attackers to cause a denial of service (infinite loop) via a malformed JPEG image.

Remediation

References

CVE-2005-3353

Related Vulnerabilities

WordPress Plugin Bold Timeline Lite Cross-Site Scripting (1.1.4)

WordPress Plugin YOP Poll Unspecified Vulnerability (5.7.7)

Oracle JRE CVE-2013-0426 Vulnerability (CVE-2013-0426)

WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.4)

Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2025-56588)

Severity

Medium

Classification

CVE-2005-3353

Tags

Missing Update Known Vulnerabilities