CVE-2014-0238 in Mac OS Xinfo

Summary

The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bounds memory access) via a vector that (1) has zero length or (2) is too long.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/03/2013

Disclosure

06/01/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
67624	Apple Mac OS X apache_mod_php cdf.c cdf_read_property_info memory corruption	119	Not defined	Official fix	CVE-2014-0238
13409	PHP cdf.c cdf_read_property_info memory corruption	119	Unproven	Official fix	CVE-2014-0238

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!