Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:PHP:EXIF-HEADER |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
PHP Exif Header Parsing Integer Overflow |
Release Date |
2012/01/25 |
Update Number |
2070 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: PHP Exif Header Parsing Integer Overflow
This signature detects attempts to exploit a known integer overflow vulnerability against PHP. A successful attack can result in information disclosure or a denial-of-service condition.
Extended Description
PHP is prone to an integer-overflow vulnerability because it fails to ensure that integer values are not overrun. Successful exploits of this vulnerability allow remote attackers to execute arbitrary code in the context of a webserver affected by the issue. Failed attempts will likely result in denial-of-service conditions. PHP 5.4.0beta2 is vulnerable; other versions may also be affected.
Affected Products
- Apple mac_os_x 10.7
- Apple mac_os_x 10.7.1
- Apple mac_os_x 10.7.2
- Apple mac_os_x 10.7.3
- Apple mac_os_x_server 10.7
- Apple mac_os_x_server 10.7.1
- Apple mac_os_x_server 10.7.2
- Apple mac_os_x_server 10.7.3
- Avaya aura_application_enablement_services 5.2
- Avaya aura_application_enablement_services 5.2.1
- Avaya aura_application_enablement_services 5.2.2
- Avaya aura_application_enablement_services 5.2.3
- Avaya aura_application_enablement_services 6.1
- Avaya aura_application_enablement_services 6.1.1
- Avaya aura_communication_manager 4.0
- Avaya aura_communication_manager 4.0
- Avaya aura_communication_manager 5.1
- Avaya aura_communication_manager 5.2
- Avaya aura_communication_manager 5.2.1
- Avaya aura_communication_manager 6.0
- Avaya aura_communication_manager 6.0.1
- Avaya aura_communication_manager_utility_services 6.0
- Avaya aura_communication_manager_utility_services 6.1
- Avaya aura_communication_manager_utility_services 6.2
- Avaya aura_experience_portal 6.0
- Avaya aura_messaging 6.0
- Avaya aura_messaging 6.0.1
- Avaya aura_session_manager 1.1
- Avaya aura_session_manager 5.2
- Avaya aura_sip_enablement_services 4.0
- Avaya aura_sip_enablement_services 5.0
- Avaya aura_sip_enablement_services 5.1
- Avaya aura_sip_enablement_services 5.2
- Avaya aura_sip_enablement_services 5.2.1
- Avaya ip_office_application_server 6.0
- Avaya ip_office_application_server 6.1
- Avaya ip_office_application_server 7.0
- Avaya ip_office_application_server 8.0
- Avaya voice_portal 5.0
- Avaya voice_portal 5.0 SP1
- Avaya voice_portal 5.0 SP2
- Avaya voice_portal 5.1
- Avaya voice_portal 5.1.1
- Avaya voice_portal 5.1.2
- Avaya voice_portal 5.1 SP1
- Debian linux 6.0 amd64
- Debian linux 6.0 arm
- Debian linux 6.0 ia-32
- Debian linux 6.0 ia-64
- Debian linux 6.0 mips
- Debian linux 6.0 powerpc
- Debian linux 6.0 s/390
- Debian linux 6.0 sparc
- Mandriva enterprise_server 5
- Mandriva enterprise_server 5 X86 64
- Mandriva linux_mandrake 2010.1
- Mandriva linux_mandrake 2010.1 X86 64
- Mandriva linux_mandrake 2011
- Mandriva linux_mandrake 2011 x86_64
- Oracle enterprise_linux 4
- Oracle enterprise_linux 5
- Oracle enterprise_linux 6
- Oracle enterprise_linux 6.2
- Php php 5.0.0 .0
- Php php 5.0.0 Beta1
- Php php 5.0.0 Beta2
- Php php 5.0.0 Beta3
- Php php 5.0.0 Beta4
- Php php 5.0.0 Candidate 1
- Php php 5.0.0 Candidate 2
- Php php 5.0.0 Candidate 3
- Php php 5.0.1
- Php php 5.0.2
- Php php 5.0.3
- Php php 5.0.4
- Php php 5.0.5
- Php php 5.1.0
- Php php 5.1.0
- Php php 5.1.1
- Php php 5.1.2
- Php php 5.1.3
- Php php 5.1.3-RC1
- Php php 5.1.4
- Php php 5.1.5
- Php php 5.1.6
- Php php 5.2
- Php php 5.2.1
- Php php 5.2.10
- Php php 5.2.11
- Php php 5.2.12
- Php php 5.2.13
- Php php 5.2.14
- Php php 5.2.15
- Php php 5.2.17
- Php php 5.2.2
- Php php 5.2.3
- Php php 5.2.4
- Php php 5.2.5
- Php php 5.2.6
- Php php 5.2.7
- Php php 5.2.8
- Php php 5.2.9
- Php php 5.2.9-2
- Php php 5.3.0
- Php php 5.3.1
- Php php 5.3.2
- Php php 5.3.3
- Php php 5.3.4
- Php php 5.3.4 RC1
- Php php 5.3.5
- Php php 5.3.5
- Php php 5.3.6
- Php php 5.3.6
- Php php 5.3.7
- Php php 5.3.8
- Php php 5.4.0beta2
- Red_hat enterprise_linux 5 Server
- Red_hat enterprise_linux Desktop Version 4
- Red_hat enterprise_linux_as 4
- Red_hat enterprise_linux_desktop_optional 6
- Red_hat enterprise_linux_desktop_workstation 5 Client
- Red_hat enterprise_linux_es 4
- Red_hat enterprise_linux_hpc_node 6
- Red_hat enterprise_linux_hpc_node_optional 6
- Red_hat enterprise_linux_server 6
- Red_hat enterprise_linux_server_optional 6
- Red_hat enterprise_linux_workstation 6
- Red_hat enterprise_linux_workstation_optional 6
- Red_hat enterprise_linux_ws 4
- Suse suse_linux_enterprise_sdk 11 SP1
- Suse suse_linux_enterprise_sdk 11 SP2
- Suse suse_linux_enterprise_server 11 SP1
- Suse suse_linux_enterprise_server 11 SP2
- Suse suse_linux_enterprise_server_for_vmware 11 SP1
- Turbolinux 11_server x64
- Turbolinux 11_server
- Turbolinux appliance_server 3.0
- Turbolinux appliance_server 3.0 X64
- Turbolinux client 2008
- Ubuntu ubuntu_linux 10.04 Amd64
- Ubuntu ubuntu_linux 10.04 ARM
- Ubuntu ubuntu_linux 10.04 I386
- Ubuntu ubuntu_linux 10.04 Powerpc
- Ubuntu ubuntu_linux 10.04 Sparc
- Ubuntu ubuntu_linux 10.10 amd64
- Ubuntu ubuntu_linux 10.10 ARM
- Ubuntu ubuntu_linux 10.10 i386
- Ubuntu ubuntu_linux 10.10 powerpc
- Ubuntu ubuntu_linux 11.04 amd64
- Ubuntu ubuntu_linux 11.04 ARM
- Ubuntu ubuntu_linux 11.04 i386
- Ubuntu ubuntu_linux 11.04 powerpc
- Ubuntu ubuntu_linux 11.10 amd64
- Ubuntu ubuntu_linux 11.10 i386
- Ubuntu ubuntu_linux 8.04 LTS Amd64
- Ubuntu ubuntu_linux 8.04 LTS I386
- Ubuntu ubuntu_linux 8.04 LTS Lpia
- Ubuntu ubuntu_linux 8.04 LTS Powerpc
- Ubuntu ubuntu_linux 8.04 LTS Sparc
References
- BugTraq: 50907
- CVE: CVE-2011-4566
- URL: https://bugs.php.net/bug.php?id=60150