CVE-2013-4636 - OpenCVE

The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via an MP3 file that triggers incorrect MIME type detection during access to an finfo object.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Php	Php

Configuration 1 [-]

OR	cpe:2.3:a:php:php:5.4.0:::::::*
	cpe:2.3:a:php:php:5.4.1:::::::*
	cpe:2.3:a:php:php:5.4.2:::::::*
	cpe:2.3:a:php:php:5.4.3:::::::*
	cpe:2.3:a:php:php:5.4.4:::::::*
	cpe:2.3:a:php:php:5.4.5:::::::*
	cpe:2.3:a:php:php:5.4.6:::::::*
	cpe:2.3:a:php:php:5.4.7:::::::*
	cpe:2.3:a:php:php:5.4.8:::::::*
	cpe:2.3:a:php:php:5.4.9:::::::*
	cpe:2.3:a:php:php:5.4.10:::::::*
	cpe:2.3:a:php:php:5.4.11:::::::*
	cpe:2.3:a:php:php:5.4.12:::::::*
	cpe:2.3:a:php:php:5.4.13:::::::*
	cpe:2.3:a:php:php:5.4.14:::::::*
	cpe:2.3:a:php:php:5.4.15:::::::*

References

Link	Resource
http://www.php.net/ChangeLog-5.php
https://bugs.php.net/bug.php?id=64830

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:14:56

Updated: 2022-10-03T16:14:56

Reserved: 2022-10-03T00:00:00

Link: CVE-2013-4636

JSON object: View

NVD Information

Status : Analyzed

Published: 2013-06-21T21:55:01.097

Modified: 2013-06-24T22:37:42.867

Link: CVE-2013-4636

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:php:php:5.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "E7B9B8D2-78B7-4B17-955B-741C7A6F6634", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "5CA2A940-BD69-4D35-AF12-432CB929248B", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "29BD13F9-86C8-44C4-A860-9A87870A518E", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "1B361FDE-9F6A-4E9A-96F1-619DC56EECB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "3DBD9E7B-1237-47A8-8A07-5CC5246A9C5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "6F2BB41E-2096-4291-B0ED-06825FDFE8BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "52BA94F7-1AF9-415C-AC21-30BC25C74C5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "D0A739A0-698A-422B-886B-430A79F6E945", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "086E0D24-A43E-4CEA-9FB0-FE193B88CC31", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.9:*:*:*:*:*:*:*", "matchCriteriaId": "EC8D0963-8CA5-4814-9B6D-4E1C3907737B", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.10:*:*:*:*:*:*:*", "matchCriteriaId": "77A4B7E0-C872-4E53-AD72-1BB2755E4FDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.11:*:*:*:*:*:*:*", "matchCriteriaId": "EECCD553-53D5-485E-8C21-E2A5070833B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.12:*:*:*:*:*:*:*", "matchCriteriaId": "95357C79-A754-4E0C-B65B-0FA241962B12", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.13:*:*:*:*:*:*:*", "matchCriteriaId": "C8D1254E-0C72-4958-BA7F-5B818C3ACB15", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.14:*:*:*:*:*:*:*", "matchCriteriaId": "21131DF1-1EE5-4C84-B1E0-FA75BC39B344", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.15:*:*:*:*:*:*:*", "matchCriteriaId": "08A0FB69-9BB2-4CCA-87C5-18368109D6E8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via an MP3 file that triggers incorrect MIME type detection during access to an finfo object."}, {"lang": "es", "value": "La funci\u00f3n mget en libmagic/softmagic.c en el componente Fileinfo en PHP v5.4.x anterior a v5.4.16 permite a atacantes remotos causar una denegaci\u00f3n de servicio (puntero inv\u00e1lido y ca\u00edda de la aplicaci\u00f3n) mediante un fichero MP3 que genera una detecci\u00f3n incorrecta del tipo MIME durante el acceso a un objeto finfo."}], "id": "CVE-2013-4636", "lastModified": "2013-06-24T22:37:42.867", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2013-06-21T21:55:01.097", "references": [{"source": "cve@mitre.org", "url": "http://www.php.net/ChangeLog-5.php"}, {"source": "cve@mitre.org", "url": "https://bugs.php.net/bug.php?id=64830"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}