Description
Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.
Remediation
References
Related Vulnerabilities
Apache Tomcat CVE-2019-2684 Vulnerability (CVE-2019-2684)
WordPress Plugin Insert or Embed Articulate Content into WordPress Remote Code Execution (4.2997)
MySQL CVE-2017-3637 Vulnerability (CVE-2017-3637)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6335)
WordPress Plugin Asset Manager 'upload.php' Arbitrary File Upload (0.3)