SOL15272 - PHP Vulnerability CVE-2013-4636

2014-05-19T00:00:00
ID SOL15272
Type f5
Reporter f5
Modified 2014-05-19T00:00:00

Description

The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via an MP3 file that triggers incorrect MIME type detection during access to an finfo object. (CVE-2013-4636)