Description
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2014-6467 Vulnerability (CVE-2014-6467)
Dolibarr Incorrect Default Permissions Vulnerability (CVE-2022-40871)
WordPress Plugin WatchMan-Site7 Cross-Site Request Forgery (3.0.2)
Moodle CVE-2023-28330 Vulnerability (CVE-2023-28330)
WordPress Plugin Download Monitor Cross-Site Scripting (1.7.0)