Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-4566

Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.794
EPSS Ranking 99.0%
CVSS Severity
CVSS v2 Score 6.4
References
Products affected by CVE-2011-4566
  • Php » Php » Version: 5.3.0
    cpe:2.3:a:php:php:5.3.0
  • Php » Php » Version: 5.3.1
    cpe:2.3:a:php:php:5.3.1
  • Php » Php » Version: 5.3.2
    cpe:2.3:a:php:php:5.3.2
  • Php » Php » Version: 5.3.3
    cpe:2.3:a:php:php:5.3.3
  • Php » Php » Version: 5.3.4
    cpe:2.3:a:php:php:5.3.4
  • Php » Php » Version: 5.3.5
    cpe:2.3:a:php:php:5.3.5
  • Php » Php » Version: 5.3.6
    cpe:2.3:a:php:php:5.3.6
  • Php » Php » Version: 5.3.7
    cpe:2.3:a:php:php:5.3.7
  • Php » Php » Version: 5.3.8
    cpe:2.3:a:php:php:5.3.8
  • Php » Php » Version: 5.4.0
    cpe:2.3:a:php:php:5.4.0
  • Canonical » Ubuntu Linux » Version: 10.04
    cpe:2.3:o:canonical:ubuntu_linux:10.04
  • Canonical » Ubuntu Linux » Version: 10.10
    cpe:2.3:o:canonical:ubuntu_linux:10.10
  • Canonical » Ubuntu Linux » Version: 11.04
    cpe:2.3:o:canonical:ubuntu_linux:11.04
  • Canonical » Ubuntu Linux » Version: 11.10
    cpe:2.3:o:canonical:ubuntu_linux:11.10
  • Canonical » Ubuntu Linux » Version: 8.04
    cpe:2.3:o:canonical:ubuntu_linux:8.04
  • Debian » Debian Linux » Version: 5.0
    cpe:2.3:o:debian:debian_linux:5.0
  • Debian » Debian Linux » Version: 6.0
    cpe:2.3:o:debian:debian_linux:6.0
  • Debian » Debian Linux » Version: 7.0
    cpe:2.3:o:debian:debian_linux:7.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved