Vulnerability & Exploit Database

Displaying all 6 entries

Results for: CVE-2007-3477 Back to search

USN-854-1: GD library vulnerabilities Vulnerability

  • Severity: 9
  • Published: October 19, 2009

The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: s...

SUSE Linux Security Advisory: SUSE-SR:2007:015 Vulnerability

  • Severity: 9
  • Published: July 20, 2007

Use-after-free vulnerability in the BitTorrent support in Opera before 9.22 allows user-assisted remote attackers to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object.

SUSE Linux Security Vulnerability: CVE-2007-3477 Vulnerability

  • Severity: 5
  • Published: June 28, 2007

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

Gentoo Linux: CVE-2007-3477: GD: Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: June 28, 2007

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

FreeBSD: gd -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 5
  • Published: June 28, 2007

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

FreeBSD: libwmf -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 10
  • Published: February 09, 2005

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.