This host is installed with PHP and is prone to multiple vulnerabilities.

Successful exploitation will allow remote attackers to conduct denial of service, gain sensitive information and have some other unspecified impacts. Impact Level: System/Application

Upgrade to PHP version 5.5.9 or later. For updates refer to http://php.net

Multiple flaws exists due to, - Integer overflow in the 'gdImageCrop' function within ext/gd/gd.c script. - Improper data types check as using string or array data type in place of a numeric data type within ext/gd/gd.c script. - Multiple integer signedness errors in the 'gdImageCrop' function within ext/gd/gd.c script. - Some NULL pointer dereference errors related to the 'imagecrop' function implementation.

PHP version 5.5.x before 5.5.9

Get the installed version of PHP with the help of detect NVT and check the version is vulnerable or not.

• http://www.osvdb.com/103478
• http://www.osvdb.com/103479
• https://bugzilla.redhat.com/show_bug.cgi?id=1065108

---

Updated on 2017-03-28