Description

Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.

Remediation

References

CVE-2007-0455

Related Vulnerabilities

Oracle Database Server CVE-2009-1972 Vulnerability (CVE-2009-1972)

WordPress Plugin Backup and Staging by WP Time Capsule Security Bypass (1.21.15)

PHP Improper Input Validation Vulnerability (CVE-2015-3330)

WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Cross-Site Scripting (3.0.15)

Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-23498)

Severity

High

Classification

CVE-2007-0455 CWE-120

Tags

Missing Update Known Vulnerabilities