CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
98.7%
Florent Hochwelker discovered that PHP incorrectly handled certain EXIF
headers in JPEG files. A remote attacker could exploit this issue to
view sensitive information or cause the PHP server to crash.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 8.04 | noarch | php5-cli | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | libapache2-mod-php5 | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-cgi | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-common | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-curl | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-dev | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-gd | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-gmp | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-ldap | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |
Ubuntu | 8.04 | noarch | php5-mhash | <Β 5.2.4-2ubuntu5.19 | UNKNOWN |