QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-1001

Back to search

CVE-2007-1001

Published: Apr 6, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap (WBMP) images with large width or height values.

VendorProductVersions

n/a

n/a

affected
n/a

References

ADV-2007-2732
vdb-entry
x_refsource_VUPEN
SSA:2007-127
vendor-advisory
x_refsource_SLACKWARE
25056
third-party-advisory
x_refsource_SECUNIA
25151
third-party-advisory
x_refsource_SECUNIA
php-gd-overflow(33453)
vdb-entry
x_refsource_XF
oval:org.mitre.oval:def:10179
vdb-entry
signature
x_refsource_OVAL
APPLE-SA-2007-07-31
vendor-advisory
x_refsource_APPLE
GLSA-200705-19
vendor-advisory
x_refsource_GENTOO
RHSA-2007:0162
vendor-advisory
x_refsource_REDHAT
MDKSA-2007:090
vendor-advisory
x_refsource_MANDRIVA
24909
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:087
vendor-advisory
x_refsource_MANDRIVA
24945
third-party-advisory
x_refsource_SECUNIA
24924
third-party-advisory
x_refsource_SECUNIA
23357
vdb-entry
x_refsource_BID
RHSA-2007:0155
vendor-advisory
x_refsource_REDHAT
ADV-2007-1269
vdb-entry
x_refsource_VUPEN
24965
third-party-advisory
x_refsource_SECUNIA
25159
vdb-entry
x_refsource_BID
MDKSA-2007:089
vendor-advisory
x_refsource_MANDRIVA
25445
third-party-advisory
x_refsource_SECUNIA
24814
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:032
vendor-advisory
x_refsource_SUSE
MDKSA-2007:088
vendor-advisory
x_refsource_MANDRIVA
26235
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0153
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now