Sign In

CVE-2007-3477

SOURCE - nist

Summary

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

EPSS Score: 0.02219 (0.895)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-399

Resource Management Errors

Sources (5)

Impacted images

debian

CREATED

UPDATED

SOURCE IDCVE-2007-3477
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow
PackageTypeOS NameOS VersionAffected RangesFix Versions
debian/libwmfdebdebian12>=0.2.12-5.1Not yet available
debian/libgd2debdebian13<2.0.35.dfsg-12.0.35.dfsg-1
debian/libgd2debdebian11<2.0.35.dfsg-12.0.35.dfsg-1
debian/libgd2debdebian10<2.0.35.dfsg-12.0.35.dfsg-1
debian/libgd2debdebian12<2.0.35.dfsg-12.0.35.dfsg-1
debian/libgd2debdebianunstable<2.0.35.dfsg-12.0.35.dfsg-1
debian/libwmfdebdebian11>=0.2.8.4-17Not yet available
debian/libwmfdebdebianunstable>=0.2.13-1.1Not yet available
debian/libwmfdebdebian10>=0.2.8.4-14Not yet available
debian/libwmfdebdebian13>=0.2.13-1.1Not yet available
debian/racketdebdebian13<5.0.2-15.0.2-1
debian/racketdebdebian10<5.0.2-15.0.2-1
debian/racketdebdebian12<5.0.2-15.0.2-1
debian/racketdebdebian11<5.0.2-15.0.2-1
debian/racketdebdebianunstable<5.0.2-15.0.2-1

Severity and metrics

No CVSS data available from this source.

nist

CREATED

UPDATED

SOURCE IDCVE-2007-3477
EXPLOITABILITY SCORE

10

EXPLOITS FOUND
COMMON WEAKNESS ENUMERATION (CWE)
CWE-399

CVSS SCORE

5medium

ubuntu

CREATED

UPDATED

SOURCE IDCVE-2007-3477
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

redhat

CREATED

UPDATED

SOURCE IDCVE-2007-3477
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

inthewild

CREATED

UPDATED

SOURCE IDCVE-2007-3477
EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE