Description
Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap (WBMP) images with large width or height values.
Remediation
References
Related Vulnerabilities
Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.18)
WordPress Plugin Raygun4WP Cross-Site Scripting (1.8.0)
WordPress Plugin Googmonify Multiple Vulnerabilities (0.5.1)
WordPress Plugin Latest Posts by BestWebSoft Cross-Site Scripting (0.2)
WordPress Plugin HTML5 Video Player-Best WordPress Video Player and Block SQL Injection (2.5.26)