Ubuntu 4.10 : php4 vulnerabilities (USN-112-1)
High Nessus Plugin ID 20499
SynopsisThe remote Ubuntu host is missing one or more security-related patches.
DescriptionAn integer overflow was discovered in the exif_process_IFD_TAG() function in PHP4's EXIF module. EXIF tags with a specially crafted 'Image File Directory' (IFD) tag caused a buffer overflow which could have been exploited to execute arbitrary code with the privileges of the PHP4 server. (CAN-2005-1042)
The same module also contained a Denial of Service vulnerability. EXIF headers with a large IFD nesting level caused an unbound recursion which would eventually overflow the stack and cause the executed program to crash. (CAN-2005-1043)
In web applications that automatically process EXIF tags of uploaded images, both vulnerabilities could be exploited remotely.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected packages.