CVE-2007-1582

Name of the Vulnerable Software and Affected Versions PHP versions 4.0.0 through 4.4.6 PHP versions 5.0.0 through 5.2.1

Description The issue allows context-dependent attackers to execute arbitrary code by interrupting certain functions in the GD extension and other extensions via a userspace error handler. This can be used to destroy and modify internal resources.

Recommendations For PHP versions 4.0.0 through 4.4.6, update to a version outside of this range to mitigate the risk. For PHP versions 5.0.0 through 5.2.1, update to a version outside of this range to mitigate the risk. As a temporary workaround, consider restricting the use of the GD extension and other affected extensions until a patch is available.