Description
file before 5.18, as used in the Fileinfo component in PHP before 5.6.0, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a zero root_storage value in a CDF file, related to cdf.c and readcdf.c.
Remediation
References
Related Vulnerabilities
MySQL CVE-2023-21882 Vulnerability (CVE-2023-21882)
SharePoint CVE-2023-33159 Vulnerability (CVE-2023-33159)
WordPress Plugin afterRead Unspecified Vulnerability (0.3)
Oracle Database Server Other Vulnerability (CVE-2006-0552)
Apache Tomcat Incorrect Default Permissions Vulnerability (CVE-2020-8022)