Oval Definition:	oval:org.mitre.oval:def:10307
Revision Date: 2013-04-29 Version: 11 Title: exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion. Description: exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-1043 Platform(s): CentOS Linux 3 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Product(s): Definition Synopsis OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section php is earlier than 0:4.3.2-23.ent OR php-pgsql is earlier than 0:4.3.2-23.ent OR php-mysql is earlier than 0:4.3.2-23.ent OR php-ldap is earlier than 0:4.3.2-23.ent OR php-imap is earlier than 0:4.3.2-23.ent OR php-odbc is earlier than 0:4.3.2-23.ent OR php-devel is earlier than 0:4.3.2-23.ent OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 OR CentOS Linux 4.x OR Oracle Linux 4.x AND Configuration section php-xmlrpc is earlier than 0:4.3.9-3.6 OR php-snmp is earlier than 0:4.3.9-3.6 OR php-domxml is earlier than 0:4.3.9-3.6 OR php-mysql is earlier than 0:4.3.9-3.6 OR php-imap is earlier than 0:4.3.9-3.6 OR php-gd is earlier than 0:4.3.9-3.6 OR php is earlier than 0:4.3.9-3.6 OR php-mbstring is earlier than 0:4.3.9-3.6 OR php-pgsql is earlier than 0:4.3.9-3.6 OR php-pear is earlier than 0:4.3.9-3.6 OR php-ldap is earlier than 0:4.3.9-3.6 OR php-odbc is earlier than 0:4.3.9-3.6 OR php-ncurses is earlier than 0:4.3.9-3.6 OR php-devel is earlier than 0:4.3.9-3.6
BACK