Description
Array index error in the imageRotate function in PHP 5.2.8 and earlier allows context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument (aka the bgd_color or clrBack argument) for an indexed image.
Remediation
References
Related Vulnerabilities
TYPO3 Improper Input Validation Vulnerability (CVE-2013-7079)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)
WordPress Plugin WordPress Comment Rating Cross-Site Scripting (1.5.3)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-8235)
WordPress Plugin Intuitive Custom Post Order Multiple Vulnerabilities (3.1.3)