CVE Vulnerabilities

CVE-2004-1065

Published: Jan 10, 2005 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file.

Affected Software

Name Vendor Start Version End Version
Openpkg Openpkg 2.1 2.1
Openpkg Openpkg 2.2 2.2
Openpkg Openpkg current current
Php Php 3.0 3.0
Php Php 3.0.1 3.0.1
Php Php 3.0.2 3.0.2
Php Php 3.0.3 3.0.3
Php Php 3.0.4 3.0.4
Php Php 3.0.5 3.0.5
Php Php 3.0.6 3.0.6
Php Php 3.0.7 3.0.7
Php Php 3.0.8 3.0.8
Php Php 3.0.9 3.0.9
Php Php 3.0.10 3.0.10
Php Php 3.0.11 3.0.11
Php Php 3.0.12 3.0.12
Php Php 3.0.13 3.0.13
Php Php 3.0.14 3.0.14
Php Php 3.0.15 3.0.15
Php Php 3.0.16 3.0.16
Php Php 3.0.17 3.0.17
Php Php 3.0.18 3.0.18
Php Php 4.0 4.0
Php Php 4.0.1 4.0.1
Php Php 4.0.1 4.0.1
Php Php 4.0.1 4.0.1
Php Php 4.0.2 4.0.2
Php Php 4.0.3 4.0.3
Php Php 4.0.3 4.0.3
Php Php 4.0.4 4.0.4
Php Php 4.0.5 4.0.5
Php Php 4.0.6 4.0.6
Php Php 4.0.7 4.0.7
Php Php 4.0.7 4.0.7
Php Php 4.0.7 4.0.7
Php Php 4.0.7 4.0.7
Php Php 4.1.0 4.1.0
Php Php 4.1.1 4.1.1
Php Php 4.1.2 4.1.2
Php Php 4.2 4.2
Php Php 4.2.0 4.2.0
Php Php 4.2.1 4.2.1
Php Php 4.2.2 4.2.2
Php Php 4.2.3 4.2.3
Php Php 4.3.0 4.3.0
Php Php 4.3.1 4.3.1
Php Php 4.3.2 4.3.2
Php Php 4.3.3 4.3.3
Php Php 4.3.4 4.3.4
Php Php 4.3.5 4.3.5
Php Php 4.3.6 4.3.6
Php Php 4.3.7 4.3.7
Php Php 4.3.8 4.3.8
Php Php 4.3.9 4.3.9
Php Php 5.0 5.0
Php Php 5.0 5.0
Php Php 5.0 5.0
Php Php 5.0.0 5.0.0
Php Php 5.0.1 5.0.1
Php Php 5.0.2 5.0.2
Red Hat Enterprise Linux 3 RedHat php-0:4.3.2-19.ent *
Red Hat Enterprise Linux 4 RedHat php-0:4.3.9-3.2 *
Php4 Ubuntu dapper *
Php4 Ubuntu edgy *
Php5 Ubuntu dapper *
Php5 Ubuntu devel *
Php5 Ubuntu edgy *
Php5 Ubuntu feisty *

References