Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2009-2687

The exif_read_data function in the Exif module in PHP before 5.2.10 allows remote attackers to cause a denial of service (crash) via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353.

  • Published: Aug 5, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-2687
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
php / php - 5.2.10
debian / debian_linux 5.0 5.0.x
debian / debian_linux 4.0 4.0.x
debian / debian_linux 6.0 6.0.x