cbcvebase.
CVE-2007-3996
published 2007-09-04

CVE-2007-3996: Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary…

PriorityP428medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
4.22%
89.7th percentile
Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the (c) gdImageCreateTrueColor function.

Affected

16 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debianlibgd2< libgd2 2.0.35.dfsg-1 (bookworm)libgd2 2.0.35.dfsg-1 (bookworm)
debianlibwmf< libgd2 2.0.35.dfsg-1 (bookworm)libgd2 2.0.35.dfsg-1 (bookworm)
debianracket< libgd2 2.0.35.dfsg-1 (bookworm)libgd2 2.0.35.dfsg-1 (bookworm)
phpphp<= 5.2.3
phpphp>= 4.0.0 < 4.4.84.4.8
phpphp>= 5.0.0 < 5.2.45.2.4
racketracket>= 0 < 5.0.2-15.0.2-1
racketracket>= 0 < 5.0.2-15.0.2-1
racketracket>= 0 < 5.0.2-15.0.2-1
racketracket>= 0 < 5.0.2-15.0.2-1

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_ubuntu6.9MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.