CVE-2014-0207

MEDIUM

PHP <5.4.30, <5.5.14 - DoS

Title source: llm

Description

The cdf_read_short_sector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted CDF file.

References (19)

[Broken Link, Mailing List] http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-updates/2014-09/msg00046.html

[Issue Tracking, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=141017844705317&w=2

[Broken Link] http://mx.gw.com/pipermail/file/2014/001553.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2014-1765.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2014-1766.html

[Not Applicable] http://secunia.com/advisories/59794

[Not Applicable] http://secunia.com/advisories/59831

[Third Party Advisory] http://support.apple.com/kb/HT6443

[Third Party Advisory] http://www.debian.org/security/2014/dsa-2974

[Third Party Advisory] http://www.debian.org/security/2014/dsa-3021

[Third Party Advisory] http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

[Third Party Advisory] http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

[Release Notes, Vendor Advisory] http://www.php.net/ChangeLog-5.php

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/68243

[Issue Tracking, Patch, Vendor Advisory] https://bugs.php.net/bug.php?id=67326

[Issue Tracking, Patch, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=1091842

[Patch, Third Party Advisory] https://github.com/file/file/commit/6d209c1c489457397a5763bca4b28e43aac90391

[Third Party Advisory] https://support.apple.com/HT204659

Scores

CVSS v3 6.5

EPSS 0.0686

EPSS Percentile 91.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-119 CWE-20

Status draft

Affected Products (6)

christos_zoulas/file < 5.19

php/php < 5.3.29

oracle/linux

opensuse/opensuse

debian/debian_linux

debian/debian_linux

Timeline

Published Jul 09, 2014

Tracked Since Feb 18, 2026