CVE-2005-0525

Name of the Vulnerable Software and Affected Versions PHP versions 4.2.2, 4.3.9, 4.3.10, 5.0.3

Description The issue allows remote attackers to cause a denial of service, specifically an infinite loop, by exploiting the php next marker function in image.c, which is reachable through the getimagesize PHP function. This can be achieved by using a JPEG image with an invalid marker value, resulting in a negative length value being passed to php stream seek. The vulnerability arises due to incorrect handling of user input by the getimagesize function.

Recommendations For PHP versions 4.2.2, 4.3.9, 4.3.10, 5.0.3, consider disabling the getimagesize function until a patch is available to prevent potential denial of service attacks. Restrict access to JPEG images with invalid marker values to minimize the risk of exploitation. Avoid using the php next marker function in image.c until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.