PHP GD Extension WBMP File Integer Overflow Vulnerabilities

PHP GD Extension WBMP File Integer Overflow Vulnerabilities

The following C exploit creates a WBMP file sufficient to demonstrate denial-of-service attacks.

Using the following PHP code with the resulting WBMP file will crash PHP:

<?php
$image = imagecreatefromwbmp('test.wbmp'); //overflow occurs
?>

/data/vulnerabilities/exploits/23357.c