Skip to main content

PHP CDF Processing Vulnerability

Last Update Date: 4 Jun 2014 09:12 Release Date: 4 Jun 2014 4019 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Two vulnerabilities were identified in PHP. A remote user can cause denial of service conditions.

  1. A remote user can send a specially crafted CDF file to cause performance degradation via file_printf() calls.
  2. A remote user can send a specially crafted CDF file to trigger an infinite loop.

Impact

  • Denial of Service

System / Technologies affected

  • prior to versions 5.4.29, 5.5.13

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link