Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-0708
HistoryMar 19, 2011 - 12:00 a.m.

CVE-2011-0708

2011-03-1900:00:00
ubuntu.com
ubuntu.com
45

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS

0.082

Percentile

94.4%

exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms
performs an incorrect cast, which allows remote attackers to cause a denial
of service (application crash) via an image with a crafted Image File
Directory (IFD) that triggers a buffer over-read.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.22UNKNOWN
ubuntu8.04noarchphp5< 5.2.4-2ubuntu5.15UNKNOWN
ubuntu9.10noarchphp5< 5.2.10.dfsg.1-2ubuntu6.9UNKNOWN
ubuntu10.04noarchphp5< 5.3.2-1ubuntu4.8UNKNOWN
ubuntu10.10noarchphp5< 5.3.3-1ubuntu9.4UNKNOWN
ubuntu11.04noarchphp5< 5.3.5-1ubuntu7.1UNKNOWN

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS

0.082

Percentile

94.4%