Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).
CVE-2016-3074 — Incorrect Conversion between Numeric Types in Libgd2
Severity
9.8CRITICALNVD
OSV4.3
EPSS
54.7%
top 1.96%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
Timeline
PublishedApr 26
Latest updateMay 14
Description
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages4 packages
Also affects: Debian Linux 7.0, 8.0, Fedora 23, 24, Ubuntu Linux 12.04, 14.04, 15.10, 16.04
Patches
🔴Vulnerability Details
4💥Exploits & PoCs
1📋Vendor Advisories
3💬Community
3Bugzilla▶
CVE-2016-3074 gd: php: Signedness vulnerability causing heap overflow in libgd [fedora-all]↗2016-04-22
Bugzilla
▶