EUVD-2016-5529

Malware in sbrugna...

The vulnerability of the exif_process_unicode function (ext/exif/exif.c) in the PHP interpreter allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the exifprocessunicode function ext/exif/exif.c in the PHP interpreter is related to the use of an uninitialized pointer. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...

php: Heap buffer overflow in function exif_process_IFD_TAG()

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...

php:php-fuzz-exif: Use-of-uninitialized-value in exif_process_TIFF_in_JPEG

Detailed Report: https://oss-fuzz.com/testcase?key=5631203063627776 Project: php Fuzzing Engine: libFuzzer Fuzz Target: php-fuzz-exif Job Type: libfuzzermsanphp Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: exifprocessTIFFinJPEG exifscanJPEGheader...

Information Disclosure

php is vulnerable to information disclosure. An uninitialized read in the function exifprocessIFDinMAKERNOTE allows an attacker to potentially read confidential information off uninitialized memory...

Denial Of Service (DoS)

PHP is vulnerable to denial-of-service DoS. The attack can be triggered when an attacker passes a malicious JPEG file to the function exifprocessIFDinMAKERNOTE in ext/exif/exif.c...

PHP 5.4.x < 5.4.37 Multiple Vulnerabilities

According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.37. It is, therefore, affected by multiple vulnerabilities: - The CGI component has an out-of-bounds read flaw in file 'cgimain.c' when nmap is used to process an invalid file that begins with a hash...