Description

The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.

Remediation

References

CVE-2014-9652

Related Vulnerabilities

WordPress Plugin Simple JWT Login-Login and Register to WordPress using JWT Insecure Password Creation (3.2.1)

Lighttpd Resource Management Errors Vulnerability (CVE-2008-0983)

Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.12)

WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more PHAR Deserialization (2.9.8.5)

phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4825)

Severity

Medium

Classification

CVE-2014-9652 CWE-119

Tags

Missing Update Known Vulnerabilities