CVE-2009-2687 — Vulnetix

Try Vulnetix Request Demo

CVE-2009-2687 PUBLISHED

Reported by mitre · Published August 5, 2009

The exif_read_data function in the Exif module in PHP before 5.2.10 allows remote attackers to cause a denial of service (crash) via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Aug 5, 2009 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Oct 22, 2023 EPSS Score
Dec 13, 2023 EPSS Score

References

USN-824-1 vendor-advisoryx_refsource_UBUNTU
37482 third-party-advisoryx_refsource_SECUNIA
40262 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
HPSBUX02543 vendor-advisoryx_refsource_HP
MDVSA-2009:145 vendor-advisoryx_refsource_MANDRIVA
ADV-2009-1632 vdb-entryx_refsource_VUPEN
oval:org.mitre.oval:def:6655 vdb-entrysignaturex_refsource_OVAL
36462 third-party-advisoryx_refsource_SECUNIA
DSA-1940 vendor-advisoryx_refsource_DEBIAN
55222 vdb-entryx_refsource_OSVDB
oval:org.mitre.oval:def:10695 vdb-entrysignaturex_refsource_OVAL
35441 third-party-advisoryx_refsource_SECUNIA
MDVSA-2009:167 vendor-advisoryx_refsource_MANDRIVA
35440 vdb-entryx_refsource_BID
php-exifreaddata-dos(51253) vdb-entryx_refsource_XF
SUSE-SR:2009:017 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM

Open in Interactive Console →