CVE-2016-7126 Vulnerability

The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of service (select_colors allocation error and out-of-bounds write) or possibly have unspecified other impact via a large value in the third argument. (CVSS:7.5) (Last Update:2016-09-12)

Vulnerability Details : The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of service (select_colors allocation error and out-of-bounds write) or possibly have unspecified other impact via a large value in the third argument. Publish Date : 2016-09-11 Last Update Date : 2016-09-12 - CVSS Scores & Vulnerability Types CVSS Score 7.5 Confidentiality Impact Partial(There is considerable informational disclosure.) Integrity Impact Partial(Modification of some system files or information is possible, but the attacker does not have control over what can be modified, or the scope of what the attacker can affect is limited.) Availability Impact Partial(There is reduced performance or interruptions in resource availability.) Access Complexity Low(Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. ) Authentication Not required(Authentication is not required to exploit the vulnerability.) Gained Access None Vulnerability Type(s) Denial Of Service CWE ID 787 - Products Affected By CVE-2016-7126 # Product Type Vendor Product Version Update Edition Language 1 Application PHP PHP 5.6.24 Version Details Vulnerabilities 2 Application PHP PHP 7.0.0 Version Details Vulnerabilities 3 Application PHP PHP 7.0.1 Version Details Vulnerabilities 4 Application PHP PHP 7.0.2 Version Details Vulnerabilities 5 Application PHP PHP 7.0.3 Version Details Vulnerabilities 6 Application PHP PHP 7.0.4 Version Details Vulnerabilities 7 Application PHP PHP 7.0.5 Version Details Vulnerabilities 8 Application PHP PHP 7.0.6 Version Details Vulnerabilities 9 Application PHP PHP 7.0.7 Version Details Vulnerabilities 10 Application PHP PHP 7.0.8 Version Details Vulnerabilities 11 Application PHP PHP 7.0.9 Version Details Vulnerabilities - Number Of Affected Versions By Product Vendor Product Vulnerable Versions PHP PHP 11 - References For CVE-2016-7126 http://openwall.com/lists/oss-security/2016/09/02/9 MLIST [oss-security] 20160902 Re: CVE assignment for PHP 5.6.25 and 7.0.10 - and libcurl http://www.php.net/ChangeLog-5.php CONFIRM http://www.php.net/ChangeLog-7.php CONFIRM https://bugs.php.net/bug.php?id=72697 CONFIRM https://github.com/php/php-src/commit/b6f13a5ef9d6280cf984826a5de012a32c396cd4?w=1 CONFIRM

- Metasploit Modules Related To CVE-2016-7126 There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)