PT-2014-1425 · Php+4 · Fileinfo+5

Remi

·

Published

2014-06-01

·

Updated

2024-06-15

·

CVE-2014-3587

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions file versions through 5.19 PHP versions prior to 5.4.32 PHP versions 5.5.x prior to 5.5.16
Description The issue is related to an integer overflow in the cdf read property info function in cdf.c in the file component, as used in the Fileinfo component in PHP. This allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. The vulnerability exists because of an incomplete fix for a previous issue.
Recommendations For file versions through 5.19, update to a version that includes the complete fix for the integer overflow in the cdf read property info function. For PHP versions prior to 5.4.32, update to version 5.4.32 or later. For PHP versions 5.5.x prior to 5.5.16, update to version 5.5.16 or later. As a temporary workaround, consider restricting access to the cdf read property info function in the Fileinfo component until a patch is available.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-189

Related Identifiers

BDU:2015-00381
BDU:2015-01282
CESA-2014_1326
CESA-2014_1327
CESA-2015_2155
CESA-2016_0760
CVE-2014-3587
DLA-50-1
DLA-67-1
DSA-3008-1
DSA-3021-1
MGASA-2014-0354
MGASA-2014-0367
OPENSUSE-SU-2016_2451-1
OPENSUSE-SU-2024:10290-1
OPENSUSE-SU-2024:10344-1
RHSA-2014:1326
RHSA-2014:1327
RHSA-2014:1765
RHSA-2014:1766
RHSA-2014_1326
RHSA-2014_1327
RHSA-2015:2155
RHSA-2015_2155
RHSA-2016:0760
RHSA-2016_0760
SUSE-SU-2016:2210-1
SUSE-SU-2016:2328-1
SUSE-SU-2016:2408-1
SUSE-SU-2016_2210-1
SUSE-SU-2016_2328-1
SUSE-SU-2016_2408-1
USN-2344-1
USN-2369-1

Affected Products

Centos
Fileinfo
Php
Red Hat
Suse
Ubuntu