Description
Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array.
Remediation
References
Related Vulnerabilities
Jenkins Insufficient Verification of Data Authenticity Vulnerability (CVE-2015-7539)
WordPress Plugin Nextend Google Connect Cross-Site Scripting (1.5.2)
WordPress Plugin Backup & Restore Dropbox Multiple Vulnerabilities (1.4.7.5)
WordPress Plugin Easy Contact Form Builder Cross-Site Scripting (1.0)