CVE-2006-4484

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.1.5

Description The issue is related to a buffer overflow in the LWZReadByte function, specifically in the GD extension. This occurs when processing a GIF file with an input code size greater than MAX LWZ BITS, leading to an overflow when initializing the table array. The impact of this issue is not fully specified, but it is triggered by remote attackers.

Recommendations For PHP versions prior to 5.1.5, update to version 5.1.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the GD extension or avoiding the processing of GIF files with large input code size values until a patch is applied.