Description

The exif_read_data function in the Exif module in PHP before 4.4.1 allows remote attackers to cause a denial of service (infinite loop) via a malformed JPEG image.

Remediation

References

CVE-2005-3353

Related Vulnerabilities

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1688)

WordPress Plugin Abandoned Cart Lite for WooCommerce Security Bypass (5.14.2)

WordPress Plugin CBX Bookmark & Favorite Cross-Site Scripting (1.6.8)

WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cross-Site Scripting (2.3.1)

Microsoft SQL Server CVE-2023-36420 Vulnerability (CVE-2023-36420)

Severity

Medium

Classification

CVE-2005-3353

Tags

Missing Update Known Vulnerabilities