Информационная безопасность
[RU] switch to English


Многочисленные DoS-условия в PHP
дополнено с 6 сентября 2007 г.
Опубликовано:8 сентября 2007 г.
Источник:
SecurityVulns ID:8120
Тип:библиотека
Уровень опасности:
6/10
Описание:Отказ на больших строках в функциях fnmatch(), iconv_substr(), glob() и setlocale().
Затронутые продукты:PHP : PHP 5.2
CVE:CVE-2007-3478 (Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support.)
 CVE-2007-3477 (The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.)
 CVE-2007-3476 (Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault.)
 CVE-2007-3475 (The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map.)
 CVE-2007-3474 (Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 have unspecified impact and user-assisted remote attack vectors.)
 CVE-2007-3473 (The gdImageCreateXbm function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure.)
 CVE-2007-3472 (Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact.)
Оригинальный текстdocumentlaurent gaffie, PHP <= 5.2.4 multiple Iconv functions denial of service (08.09.2007)
 documentlaurent gaffie, PHP <=5.2.4 iconv_substr() denial of service (06.09.2007)
 documentlaurent gaffie, PHP < 5.2.3 fnmatch() denial of service (06.09.2007)
 documentlaurent gaffie, PHP < 5.2.4 setlocale() denial of service (06.09.2007)
 documentlaurent gaffie, PHP < 5.2.3 glob() denial of service (06.09.2007)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород