Description
The exif_read_data function in the Exif module in PHP before 4.4.1 allows remote attackers to cause a denial of service (infinite loop) via a malformed JPEG image.
Remediation
References
Related Vulnerabilities
XWiki Improper Neutralization of Alternate XSS Syntax Vulnerability (CVE-2023-35158)
Dolibarr Improper Privilege Management Vulnerability (CVE-2020-14201)
WordPress Plugin WP fail2ban Security Bypass (4.0.2)
WordPress Plugin WP Symposium SQL Injection (15.5.1)
Oracle Application Server Other Vulnerability (CVE-2002-2153)