Description

Buffer overflow in the imageloadfont function in ext/gd/gd.c in PHP 4.4.x before 4.4.9 and PHP 5.2 before 5.2.6-r6 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.

Remediation

References

CVE-2008-3658

Related Vulnerabilities

Magento CVE-2019-7928 Vulnerability (CVE-2019-7928)

WordPress Plugin WassUp Real Time Analytics Unspecified Vulnerability (1.7.2)

WordPress Plugin BuddyPress Docs Security Bypass (1.9.2)

WordPress Plugin WTI Like Post SQL Injection (1.4.2)

WordPress Plugin POST SMTP Mailer-Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress Cross-Site Request Forgery (2.0.20)

Severity

High

Classification

CVE-2008-3658 CWE-119

Tags

Missing Update Known Vulnerabilities