CVE-2009-3292

Опубликовано: 22 сент. 2009

Источник: debian

EPSS Низкий

Описание

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php5	fixed	5.2.11.dfsg.1-1		package

Примечания

unknown impact, it is related to missing sanity checks
when determining the length of sections of jpg headers
a missing limit on the nesting level of TIFF files, and
missing EOF checks, possibly leading to NULL dereferences
experimental is likely to be affected (as of 5.3.0)

EPSS

Процентиль: 87%

0.03611

Низкий

Связанные уязвимости

CVE-2009-3292

ubuntu

почти 16 лет назад

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."

CVE-2009-3292

redhat

почти 16 лет назад

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."

CVE-2009-3292

nvd

почти 16 лет назад

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."

GHSA-pvvp-vj5f-7cc6

github

около 3 лет назад

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."

ELSA-2010-0040

oracle-oval

больше 15 лет назад

ELSA-2010-0040: php security update (MODERATE)

EPSS

Процентиль: 87%

0.03611

Низкий