Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9652

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-9652
Last Modified 09 Oct 2015 10:00:04
Published 30 Mar 2015 06:59:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-9652

Summary

The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.

Vulnerable Systems

Application

  • File Project File 5.20

  • Php 5.4.36

  • Php 5.5.0

  • Php 5.5.1

  • Php 5.5.10

  • Php 5.5.11

  • Php 5.5.12

  • Php 5.5.13

  • Php 5.5.14

  • Php 5.5.15

  • Php 5.5.16

  • Php 5.5.17

  • Php 5.5.18

  • Php 5.5.19

  • Php 5.5.2

  • Php 5.5.20

  • Php 5.5.3

  • Php 5.5.4

  • Php 5.5.5

  • Php 5.5.6

  • Php 5.5.7

  • Php 5.5.8

  • Php 5.5.9

  • Php 5.6.0

  • Php 5.6.1

  • Php 5.6.2

  • Php 5.6.3

  • Php 5.6.4


References

CONFIRM - https://github.com/file/file/commit/59e63838913eee47f5c120a6c53d4565af638158

CONFIRM - https://bugs.php.net/patch-display.php?bug=68735&patch=bug68735.patch&revision=1420309079

CONFIRM - https://bugs.php.net/bug.php?id=68735

CONFIRM - http://php.net/ChangeLog-5.php

MLIST - [oss-security] 20150205 Re: CVE Request: PHP/file: out-of-bounds memory access in softmagic

CONFIRM - http://bugs.gw.com/view.php?id=398

SUSE - openSUSE-SU-2015:0440

SUSE - SUSE-SU-2015:0436

SUSE - SUSE-SU-2015:0424

CONFIRM - https://support.apple.com/HT205267

APPLE - APPLE-SA-2015-09-30-3


Last Updated: 27 May 2016 11:10:02