Vulnerabilities > CVE-2013-7328 - Numeric Errors vulnerability in PHP
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple integer signedness errors in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allow remote attackers to cause a denial of service (application crash) or obtain sensitive information via an imagecrop function call with a negative value for the (1) x or (2) y dimension, a different vulnerability than CVE-2013-7226.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 21 |
Common Weakness Enumeration (CWE)
Nessus
NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-2126-1.NASL description Bernd Melchers discovered that PHP last seen 2020-03-18 modified 2014-03-04 plugin id 72799 published 2014-03-04 reporter Ubuntu Security Notice (C) 2014-2020 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/72799 title Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : php5 vulnerabilities (USN-2126-1) NASL family CGI abuses NASL id PHP_5_5_9.NASL description According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.9. It is, therefore, potentially affected by the following vulnerabilities related to the GD extension : - A heap-based buffer overflow error exists related to the functions last seen 2020-06-01 modified 2020-06-02 plugin id 72511 published 2014-02-14 reporter This script is Copyright (C) 2014-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/72511 title PHP 5.5.x < 5.5.9 GD Extension Multiple Vulnerabilities
Seebug
| bulletinFamily | exploit |
| description | CVE ID:CVE-2013-7328 PHP是一种HTML内嵌式的语言。 PHP 'ext/gd/gd.c' gdImageCrop函数存在多个整数符号错误,允许远程攻击者通过调用x或Y维度为负值的imagecrop函数,可使应用程序崩溃或获取敏感信息。 0 PHP 5.5.x PHP 5.5.9已经修复该漏洞,建议用户下载更新: http://php.net |
| id | SSV:61499 |
| last seen | 2017-11-19 |
| modified | 2014-02-20 |
| published | 2014-02-20 |
| reporter | Root |
| title | PHP 'ext/gd/gd.c' gdImageCrop整数符号错误漏洞 |
References
- http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=8f4a5373bb71590352fd934028d6dde5bc18530b
- http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=8f4a5373bb71590352fd934028d6dde5bc18530b
- http://www.ubuntu.com/usn/USN-2126-1
- http://www.ubuntu.com/usn/USN-2126-1
- https://bugs.php.net/bug.php?id=66356
- https://bugs.php.net/bug.php?id=66356
- https://bugzilla.redhat.com/show_bug.cgi?id=1065108
- https://bugzilla.redhat.com/show_bug.cgi?id=1065108