Description

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

Remediation

References

CVE-2005-1043

Related Vulnerabilities

Oracle Database Server CVE-2014-6467 Vulnerability (CVE-2014-6467)

Dolibarr Incorrect Default Permissions Vulnerability (CVE-2022-40871)

WordPress Plugin WatchMan-Site7 Cross-Site Request Forgery (3.0.2)

Moodle CVE-2023-28330 Vulnerability (CVE-2023-28330)

WordPress Plugin Download Monitor Cross-Site Scripting (1.7.0)

Severity

Medium

Classification

CVE-2005-1043

Tags

Missing Update Known Vulnerabilities