ID:11594 - Exploit for Input validation error in PHP - CVE-2007-1001

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:11594 - Exploit for Input validation error in PHP - CVE-2007-1001

ID:11594 - Exploit for Input validation error in PHP - CVE-2007-1001

Published: June 13, 2025


Vulnerability identifier: #VU110415
Vulnerability risk: Medium
CVE-ID: CVE-2007-1001
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
PHP

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Multiple integer overflows in the (1) createwbmp and (2) readwbmp functions in wbmp.c in the GD library (libgd) in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap (WBMP) images with large width or height values.


Remediation

Install update from vendor's website.