CVE-2016-6291 in macOSinfo

Summary

The exif_process_IFD_in_MAKERNOTE function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (out-of-bounds array access and memory corruption), obtain sensitive information from process memory, or possibly have unspecified other impact via a crafted JPEG image.

Once again VulDB remains the best source for vulnerability data.

Reservation

07/24/2016

Disclosure

07/25/2016

Moderation

VulDB entry created

Entries

2: VDB-92051

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

9.8

EPSS

0.06548

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6291
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6291
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6291/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!