Description

The exif_read_data function in the Exif module in PHP before 4.4.1 allows remote attackers to cause a denial of service (infinite loop) via a malformed JPEG image.

Remediation

References

CVE-2005-3353

Related Vulnerabilities

WordPress Plugin Event Management Tickets Booking By Event Monster Cross-Site Scripting (1.0.7)

MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)

PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-17450)

PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3065)

WordPress Plugin Quick Cache (Speed Without Compromise) Unspecified Vulnerability (140725)

Severity

Medium

Classification

CVE-2005-3353

Tags

Missing Update Known Vulnerabilities