Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2011-4566

Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.

  • Published: Nov 29, 2011
  • Updated: Apr 13, 2023
  • CVE: CVE-2011-4566
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:L/Au:N/C:P/I:N/A:P

CWEs:

Software From Fixed in
php / php 5.4.0-beta2 5.4.0-beta2.x
php / php 5.3.0 5.3.9
debian / debian_linux 5.0 5.0.x
debian / debian_linux 7.0 7.0.x
debian / debian_linux 6.0 6.0.x
canonical / ubuntu_linux 10.10 10.10.x
canonical / ubuntu_linux 11.04 11.04.x
canonical / ubuntu_linux 11.10 11.10.x
canonical / ubuntu_linux 8.04 8.04.x
canonical / ubuntu_linux 10.04 10.04.x