CVE-2007-1001
EPSS 13.2%
Description
Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap (WBMP) images with large width or height values.
How to fix CVE-2007-1001
To remediate CVE-2007-1001, upgrade the affected package to a fixed version below.
- Debian/libgd2—upgrade to 2.0.33-1 or later
Is CVE-2007-1001 being exploited?
Moderate — EPSS is 13.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 2.0.33-1