CVE-2014-9652Improper Restriction of Operations within the Bounds of a Memory Buffer in Project File

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds Read10 documents10 sources
Severity
5.0MEDIUMNVD
EPSS
5.8%
top 9.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
File Project FilePHP
Timeline
PublishedMar 30
Latest updateMay 17

Description

The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

Debianfile_project/file< 1:5.21+15-1+3
NVDphp/php5.4.36+26

🔴Vulnerability Details

3
GHSA
GHSA-4mj2-cv5h-vvmg: The mconvert function in softmagic2022-05-17
OSV
CVE-2014-9652: The mconvert function in softmagic2015-03-30
CVEList
CVE-2014-9652: The mconvert function in softmagic2015-03-30

📋Vendor Advisories

4
Ubuntu
PHP vulnerabilities2015-02-17
Red Hat
file: out of bounds read in mconvert()2014-11-11
Debian
CVE-2014-9652: file - The mconvert function in softmagic.c in file before 5.21, as used in the Fileinf...2014
Apple
CVE-2014-9652: OS X El Capitan v10.11

💬Community

2
HackerOne
PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs2017-08-21
Bugzilla
CVE-2014-9652 file: out of bounds read in mconvert()2015-02-03
CVE-2014-9652 — File Project File vulnerability | cvebase