Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4.0.0 up to and including 4.4.6 and 5.0.0 up to and including 5.2.1 allow context-dependent malicious users to execute arbitrary code via Wireless Bitmap (WBMP) images with large width or height values.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php 4.0.0 |
||
php php 4.0.1 |
||
php php 4.0.5 |
||
php php 4.0.6 |
||
php php 4.0 |
||
php php 4.2.0 |
||
php php 4.2.1 |
||
php php 4.2.2 |
||
php php 4.3.2 |
||
php php 4.3.3 |
||
php php 4.4.0 |
||
php php 4.4.1 |
||
php php 5.0.0 |
||
php php 5.0.3 |
||
php php 5.0.4 |
||
php php 5.1.1 |
||
php php 5.1.2 |
||
php php 4.0.4 |
||
php php 4.1.1 |
||
php php 4.1.2 |
||
php php 4.3.10 |
||
php php 4.3.11 |
||
php php 4.3.8 |
||
php php 4.3.9 |
||
php php 4.4.6 |
||
php php 5.0.1 |
||
php php 5.0.2 |
||
php php 5.1.0 |
||
php php 5.2.1 |
||
php php 4.0.3 |
||
php php 4.0.7 |
||
php php 4.1.0 |
||
php php 4.3.0 |
||
php php 4.3.1 |
||
php php 4.3.6 |
||
php php 4.3.7 |
||
php php 4.4.4 |
||
php php 4.4.5 |
||
php php 5.0 |
||
php php 5.1.5 |
||
php php 5.1.6 |
||
php php 5.2.0 |
||
php php 4.0.2 |
||
php php 4.2.3 |
||
php php 4.2 |
||
php php 4.3.4 |
||
php php 4.3.5 |
||
php php 4.4.2 |
||
php php 4.4.3 |
||
php php 5.0.5 |
||
php php 5.1.3 |
||
php php 5.1.4 |