Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2013-7327

Опубликовано: 18 фев. 2014
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8

Описание

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.

РелизСтатусПримечание
devel

not-affected

5.5.9+dfsg-1ubuntu1
lucid

not-affected

5.3.2-1ubuntu4.22
precise

not-affected

5.3.10-1ubuntu3.9
quantal

not-affected

5.4.6-1ubuntu1.5
saucy

released

5.5.3+dfsg-1ubuntu2.2
upstream

released

5.5.9+dfsg-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 68%
0.00586
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2013-7327

redhat
больше 11 лет назад

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.

nvd логотип

CVE-2013-7327

nvd
больше 11 лет назад

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.

debian логотип

CVE-2013-7327

debian
больше 11 лет назад

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does ...

github логотип

GHSA-9pmm-3h3g-3r55

github
больше 3 лет назад

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.

EPSS

Процентиль: 68%
0.00586
Низкий

6.8 Medium

CVSS2