VDB
CVE-2009-2687
CVE-2009-2687
PUBLISHED
Reported by mitre · Published August 5, 2009
The exif_read_data function in the Exif module in PHP before 5.2.10 allows remote attackers to cause a denial of service (crash) via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | *, n/a |
Exploit Intelligence
- http://bugs.php.net/bug.php?id=48378 (nist-nvd)
Timeline
- Aug 5, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
References
- USN-824-1 vendor-advisoryx_refsource_UBUNTU
- 37482 third-party-advisoryx_refsource_SECUNIA
- 40262 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- HPSBUX02543 vendor-advisoryx_refsource_HP
- MDVSA-2009:145 vendor-advisoryx_refsource_MANDRIVA
- ADV-2009-1632 vdb-entryx_refsource_VUPEN
- oval:org.mitre.oval:def:6655 vdb-entrysignaturex_refsource_OVAL
- 36462 third-party-advisoryx_refsource_SECUNIA
- DSA-1940 vendor-advisoryx_refsource_DEBIAN
- 55222 vdb-entryx_refsource_OSVDB
- oval:org.mitre.oval:def:10695 vdb-entrysignaturex_refsource_OVAL
- 35441 third-party-advisoryx_refsource_SECUNIA
- MDVSA-2009:167 vendor-advisoryx_refsource_MANDRIVA
- 35440 vdb-entryx_refsource_BID
- php-exifreaddata-dos(51253) vdb-entryx_refsource_XF
- SUSE-SR:2009:017 vendor-advisoryx_refsource_SUSE
- x_refsource_CONFIRM