Description

Stack-based buffer overflow in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 allows context-dependent attackers to cause a denial of service (application crash) via a large number of anti-aliasing steps in an argument to the imagepstext function.

Remediation

References

CVE-2010-4698

Related Vulnerabilities

Jboss EAP Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2018-1067)

WordPress Plugin MAC PHOTO GALLERY 'albid' Parameter Arbitrary File Disclosure (2.8)

WordPress Plugin Profile Builder-User Profile & User Registration Forms Security Bypass (3.4.8)

WordPress Plugin Easy Justified Gallery Cross-Site Scripting (1.0.8)

WordPress Plugin JS MultiHotel Multiple Vulnerabilities (2.2.1)

Severity

Medium

Classification

CVE-2010-4698 CWE-119

Tags

Missing Update Known Vulnerabilities