Lucene search

MitreCVE-2007-3996

HistorySep 04, 2007 - 6:17 p.m.

CVE-2007-3996

2007-09-0418:17:00

CWE-189

mitre

web.nvd.nist.gov

cve-2007-3996

integer overflow

libgd

php

denial of service

application crash

arbitrary code

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

9.7

Confidence

High

EPSS

0.028

Percentile

90.8%

JSON

Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the © gdImageCreateTrueColor function.

Affected configurations

Nvd

Node

phpphpRange≤5.2.3

VendorProductVersionCPE
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
php	php	*	cpe:2.3:a:php:php::::::::

References

bugs.gentoo.org/show_bug.cgi?id=201546

lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html

rhn.redhat.com/errata/RHSA-2007-0889.html

secunia.com/advisories/26642

secunia.com/advisories/26822

secunia.com/advisories/26838

secunia.com/advisories/26871

secunia.com/advisories/26895

secunia.com/advisories/26930

secunia.com/advisories/26967

secunia.com/advisories/27102

secunia.com/advisories/27351

secunia.com/advisories/27377

secunia.com/advisories/27545

secunia.com/advisories/28009

secunia.com/advisories/28147

secunia.com/advisories/28658

secunia.com/advisories/31168

security.gentoo.org/glsa/glsa-200712-13.xml

securityreason.com/securityalert/3103

secweb.se/en/advisories/php-imagecopyresized-integer-overflow/

secweb.se/en/advisories/php-imagecreatetruecolor-integer-overflow/

support.avaya.com/elmodocs2/security/ASA-2007-449.htm

www.debian.org/security/2008/dsa-1613

www.gentoo.org/security/en/glsa/glsa-200710-02.xml

www.mandriva.com/security/advisories?name=MDKSA-2007:187

www.php.net/ChangeLog-5.php#5.2.4

www.php.net/releases/5_2_4.php

www.redhat.com/support/errata/RHSA-2007-0888.html

www.redhat.com/support/errata/RHSA-2007-0890.html

www.redhat.com/support/errata/RHSA-2007-0891.html

www.trustix.org/errata/2007/0026/

www.ubuntu.com/usn/usn-557-1

www.vupen.com/english/advisories/2007/3023

exchange.xforce.ibmcloud.com/vulnerabilities/36382

exchange.xforce.ibmcloud.com/vulnerabilities/36383

issues.rpath.com/browse/RPL-1693

issues.rpath.com/browse/RPL-1702

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11147

www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

9.7

Confidence

High

EPSS

0.028

Percentile

90.8%

JSON

Related for CVE-2007-3996