CVE-2014-3670

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 14-10-2014 02:00

Last modified: - 14-10-2014 02:00

Total changes: - 12

Description

CVE-2014-3670 php: heap corruption issue in exif_thumbnail()

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:P/I:P/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

6.8

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=php53-0 AND versionEndExcluding=5.3.3-26.el5_11

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=php-0 AND versionEndExcluding=5.1.6-45.el5_11

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=php-0 AND versionEndExcluding=5.3.3-40.el6_6

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=6

AND

product=php-0 AND versionEndExcluding=5.3.3-27.el6_5.3

vendor=Red Hat Enterprise Linux AND product=rhel_eus AND version=6.5

AND

product=php-0 AND versionEndExcluding=5.4.16-23.el7_0.3

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=7

AND

product=php54-php-0 AND versionEndExcluding=5.4.16-22.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php55-php-0 AND versionEndExcluding=5.5.6-13.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php54-php-0 AND versionEndExcluding=5.4.16-22.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php55-php-0 AND versionEndExcluding=5.5.6-13.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php54-php-0 AND versionEndExcluding=5.4.16-22.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php55-php-0 AND versionEndExcluding=5.5.6-13.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php54-php-0 AND versionEndExcluding=5.4.16-22.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php55-php-0 AND versionEndExcluding=5.5.6-13.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php54-php-0 AND versionEndExcluding=5.4.16-22.el7

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=php55-php-0 AND versionEndExcluding=5.5.6-13.el7

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

Reference

Keywords

REDHAT

CVE-2014-3670

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.