CVE-2006-4484

EPSS 6.44% · P91 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-4484

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

PHP 'gd_gif_in.c'LWZReadByte_函数缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PHP 5.1.5之前版本中，GD扩展中ext/gd/libgd/gd_gif_in.c程序的LWZReadByte_函数存在缓冲区溢出漏洞，远程攻击者可借助一个input_code_size大于MAX_LWZ_BITS的GIF文件造成不明影响，在初始化表数组时引发溢出。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-4484

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-4484

请登录查看更多情报信息。

http://bugs.php.net/bug.php?id=38112x_refsource_CONFIRM
http://www.php.net/ChangeLog-5.php#5.1.5x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-223.htmx_refsource_CONFIRM
http://wiki.rpath.com/Advisories:rPSA-2008-0046x_refsource_CONFIRM
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0046x_refsource_CONFIRM
http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/gd_gif_in.c?view=logx_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-222.htmx_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-2218x_refsource_CONFIRM
http://www.php.net/release_5_1_5.phpx_refsource_CONFIRM
http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/gd_gif_in.c?r1=1.10&r2=1.11x_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-683x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=431568x_refsource_CONFIRM
http://secunia.com/advisories/21768third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22039third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/30717third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29242third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28768third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22225third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21546third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28959third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21842third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28845third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22487third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28866third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22069third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/19582vdb-entryx_refsource_BID
http://secunia.com/advisories/28838third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29546third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22440third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22538third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29157third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1016984vdb-entryx_refsource_SECTRACK
http://www.ubuntu.com/usn/usn-342-1vendor-advisoryx_refsource_UBUNTU
http://www.turbolinux.com/security/2006/TLSA-2006-38.txtvendor-advisoryx_refsource_TURBO
http://www.vupen.com/english/advisories/2006/3318vdb-entryx_refsource_VUPEN
ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.ascvendor-advisoryx_refsource_SGI
http://www.redhat.com/support/errata/RHSA-2008-0146.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2008:077vendor-advisoryx_refsource_MANDRIVA
http://rhn.redhat.com/errata/RHSA-2006-0688.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2008:038vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:162vendor-advisoryx_refsource_MANDRIVA
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00502.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.htmlvendor-advisoryx_refsource_SUSE
http://www.novell.com/linux/security/advisories/2006_52_php.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9004vdb-entrysignaturex_refsource_OVAL
http://www.securityfocus.com/archive/1/488008/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/487683/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/447866/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-4484

Same Patch Batch · n/a · 2006-08-31 · 55 CVEs total

CVE-2006-4464		Nokia Browser 超大Unicode字符串拒绝服务攻击漏洞
CVE-2006-4458		PhpGroupWare日历模块'class.holidaycalc.inc.php'路径遍历漏洞
CVE-2006-4474		Joomla! 多个跨站脚本攻击漏洞
CVE-2006-4456		phpECard functions.php和index.php'远程文件包含漏洞
CVE-2006-4476		Joomla! 多个权限许可和访问控制漏洞
CVE-2006-4475		Joomla! Admin Popups功能权限许可和访问控制漏洞
CVE-2006-4457		phpECard 'index.php'include_path参数HP远程文件包含漏洞
CVE-2006-4467		Simple Machines Forum unset PHP指令BUG 目录遍历漏洞
CVE-2006-4466		Joomla! unset PHP指令bug 未明安全漏洞
CVE-2006-4465		Microsoft终端服务器Explorer错误任意代码执行漏洞
CVE-2006-4468		Joomla! 多个不明漏洞
CVE-2006-4463		Jetstat.com JS ASP Faq Manager 多个SQL注入漏洞
CVE-2006-4462		Gonafish.com LinksCaffe 'admin1953.php' 安全权限获得漏洞
CVE-2006-4461		Paessler IPCheck Server Monitor 探测器设置未明安全漏洞
CVE-2006-4460		PHP iAddressBook未明跨站脚本攻击漏洞
CVE-2006-4486		PHP 分配例程整型溢出漏洞
CVE-2006-4485		PHP stripos函数未明攻击漏洞
CVE-2006-4483		PHP 'open_basedir或safe_mode'远程输入错误漏洞
CVE-2006-4482		PHP 'string.c'多个堆缓冲区错误漏洞
CVE-2006-4481		PHP 多个输入验证漏洞

Showing top 20 of 55 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-4484

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-4484

I. Basic Information for CVE-2006-4484

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-4484

III. Intelligence Information for CVE-2006-4484

Same Patch Batch · n/a · 2006-08-31 · 55 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-4484

Leave a comment