Description
The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting certain functions in the GD (ext/gd) extension and unspecified other extensions via a userspace error handler, which can be used to destroy and modify internal resources.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2007-1401)
Moodle CVE-2024-34003 Vulnerability (CVE-2024-34003)
WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress SQL Injection (3.7.39)
WordPress Plugin Advanced Custom Fields (ACF) Information Disclosure (6.0.2)
WordPress Plugin Admin Pack by SITE CASEIRO Cross-Site Scripting (1.1)