CVE-2005-1042

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.

References

http://cvs.php.net/diff.php/php-src/ext/exif/exif.c?r1=1.118.2.33&r2=1.118.2.34&ty=u

http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html

http://www.gentoo.org/security/en/glsa/glsa-200504-15.xml

http://www.mandriva.com/security/advisories?name=MDKSA-2005:072

http://www.redhat.com/support/errata/RHSA-2005-405.html

http://www.redhat.com/support/errata/RHSA-2005-406.html

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=154021

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10822

https://usn.ubuntu.com/112-1/

Details

Source: MITRE

Published: 2005-05-02

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (8 total)

IDNameProductFamilySeverity
23981CentOS 4 : PHP (CESA-2005:406)NessusCentOS Local Security Checks
high
21818CentOS 3 : PHP (CESA-2005:405)NessusCentOS Local Security Checks
high
20499Ubuntu 4.10 : php4 vulnerabilities (USN-112-1)NessusUbuntu Local Security Checks
high
18437Mac OS X Multiple Vulnerabilities (Security Update 2005-006)NessusMacOS X Local Security Checks
high
18198RHEL 4 : PHP (RHSA-2005:406)NessusRed Hat Local Security Checks
high
18163RHEL 3 : PHP (RHSA-2005:405)NessusRed Hat Local Security Checks
high
18091Mandrake Linux Security Advisory : php (MDKSA-2005:072)NessusMandriva Local Security Checks
critical
18081GLSA-200504-15 : PHP: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high