Lucene search
Ubuntu.comUB:CVE-2011-4566HistoryNov 28, 2011 - 12:00 a.m.
CVE-2011-4566
2011-11-2800:00:00
ubuntu.com
ubuntu.com
21
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.882 High
EPSS
Percentile
98.6%
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif
extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to
read the contents of arbitrary memory locations or cause a denial of
service via a crafted offset_val value in an EXIF header in a JPEG file, a
different vulnerability than CVE-2011-0708.
Bugs
Related
cve
cve
CVE-2011-4566
2011-11-29 00:55:00
CVE-2011-0708
2011-03-20 02:00:00
prion
prion
Integer overflow
2011-11-29 00:55:00
Buffer overflow
2011-03-20 02:00:00
openvas
openvas
Mandriva Update for php MDVSA-2011:197 (php)
2012-01-02 00:00:00
FreeBSD Ports: php5, php5-exif
2012-02-12 00:00:00
Mandriva Update for php MDVSA-2011:197 (php)
2012-01-02 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2011:197)
2012-01-03 00:00:00
Scientific Linux Security Update : php on SL4.x i386/x86_64 (20120130)
2012-08-01 00:00:00
Oracle Linux 4 : php (ELSA-2012-0071)
2013-07-12 00:00:00
centos
centos
php security update
2012-01-30 20:44:11
php security update
2012-01-18 19:55:58
php, php53 security update
2012-01-11 19:19:36
seebug
seebug
PHP "exif_process_IFD_TAG()"θΏη¨ζ΄ζ°ζΊ’εΊζΌζ΄
2011-12-07 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP Exif Header Parsing Integer Overflow - Ver2 (CVE-2011-4566)
2015-03-26 00:00:00
PHP Exif Header Parsing Integer Overflow (CVE-2011-4566)
2012-08-27 00:00:00
ubuntu
ubuntu
PHP vulnerability
2011-12-14 00:00:00
PHP Regressions
2011-05-05 00:00:00
PHP vulnerabilities
2011-04-29 00:00:00
redhat
redhat
(RHSA-2012:0071) Moderate: php security update
2012-01-30 00:00:00
(RHSA-2012:0019) Moderate: php53 and php security update
2012-01-11 00:00:00
(RHSA-2012:0033) Moderate: php security update
2012-01-18 00:00:00
oraclelinux
oraclelinux
php security update
2012-01-30 00:00:00
php53 and php security update
2012-01-11 00:00:00
php security update
2012-01-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:06:05
Denial Of Service (DoS)
2020-04-10 01:03:23
ubuntucve
ubuntucve
CVE-2011-0708
2011-03-19 00:00:00
freebsd
freebsd
php -- crash on crafted tag in exif
2011-03-20 00:00:00
php -- multiple vulnerabilities
2011-12-29 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: maniadrive-1.2-32.fc15.1
2012-01-26 22:56:47
[SECURITY] Fedora 16 Update: php-eaccelerator-0.9.6.1-9.fc16.1
2012-01-19 22:00:25
[SECURITY] Fedora 16 Update: maniadrive-1.2-32.fc16.1
2012-01-19 22:00:25
amazon
amazon
Medium: php
2012-01-19 20:10:00
securityvulns
securityvulns
PHP security vulnerabilities
2012-02-08 00:00:00
[ MDVSA-2012:071 ] php
2012-05-14 00:00:00
[USN-1126-1] PHP vulnerabilities
2011-05-01 00:00:00
osv
osv
php5 - several
2012-01-31 00:00:00
php5 - several
2011-06-29 00:00:00
debian
debian
[SECURITY] [DSA 2399-2] php5 regression fix
2012-01-31 15:26:47
[SECURITY] [DSA 2399-1] php5 security update
2012-01-31 07:22:58
[SECURITY] [DSA 2262-2] php5 update
2011-07-01 20:00:32
f5
f5
K13519 : Multiple PHP vulnerabilities
2013-09-20 00:00:00
SOL13519 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
SOL13518 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
suse
suse
update for php5 (important)
2012-03-29 15:08:14
Security update for PHP5 (important)
2013-08-16 21:04:11
Security update for PHP5 (important)
2012-04-12 23:08:15
gentoo
gentoo
PHP: Multiple vulnerabilities
2012-09-24 00:00:00
PHP: Multiple vulnerabilities
2011-10-10 00:00:00
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.882 High
EPSS
Percentile
98.6%
Related for UB:CVE-2011-4566