|
| Description: | | Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file. |
|
| Impact: | | An attacker can exploit the affected software with a integer overflow vulnerability. Successful exploit leads to execute arbitrary code, and failed exploit may disturb the software logic and cause denial of service. |
|
| Affected OS: | | Windows, Other Unix, FreeBSD, Linux |
|
| Reference: | | SecurityFocusBID:50907
|
|