Description
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Remediation
References
Related Vulnerabilities
WordPress Plugin bbPress SQL Injection (2.5.14)
Oracle JRE CVE-2013-5810 Vulnerability (CVE-2013-5810)
WordPress Plugin Convert Plus Security Bypass (3.4.2)
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0018)