FreeBSD Ports: Php5-gd Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://www.securiteam.com/unixfocus/6G00Y0ANFU.html http://www.vuxml.org/freebsd/58a3c266-db01-11dd-ae30-001cc0377035.html

Insight

The following package is affected: php5-gd CVE-2008-5498 Array index error in the imageRotate function in PHP 5.2.8 and earlier allows context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument (aka the bgd_color or clrBack argument) for an indexed image.

Severity

Classification

CVE CVE-2008-5498
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

FreeBSD Ports: clamav
FreeBSD Ports: asterisk16
FreeBSD Ports: apache
django -- cross-site scripting vulnerability
FreeBSD Ports: bacula

FreeBSD Ports: php5-gd

Take action and discover your vulnerabilities