CVE-2007-2756

EPSS 6.83% · P91 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-2756

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GD图形库PNG文件处理拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GD是一个开源的代码库，用于为站点动态创建图形。 GD图形库在处理畸形的PNG图形时存在漏洞，远程攻击者可能利用此漏洞导致相关的应用进入死循环。 GD库的libpng解码器的libpng代码(png_read_data())与libgd回调(gdPngReadData())之间没有正确地检测截短的输入，导致死循环，libpng的png_read_info()函数无法返回，函数库会消耗100%的CPU资源。 /* id: gdbad3.c, Xavier Roche, May. 2007 */ /* gcc

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-2756

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-2756

Please Login to view more intelligence information

http://www.libgd.org/ReleaseNote020035x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2007-449.htmx_refsource_CONFIRM
http://bugs.libgd.org/?do=details&task_id=86x_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-1394x_refsource_CONFIRM
http://www.php.net/releases/5_2_3.phpx_refsource_CONFIRM
http://secunia.com/advisories/26871third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/27110third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25353third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25378third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/24089vdb-entryx_refsource_BID
http://osvdb.org/35788vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/25787third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25362third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25657third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26895third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/27037third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25855third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/36643vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/25658third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/27102third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25535third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25646third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26390third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26930third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26048third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26967third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/25575third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/27545third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26231third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29157third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/30168third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id?1018187vdb-entryx_refsource_SECTRACK
http://www.trustix.org/errata/2007/0023/vendor-advisoryx_refsource_TRUSTIX
http://www.ubuntu.com/usn/usn-473-1vendor-advisoryx_refsource_UBUNTU
http://www.trustix.org/errata/2007/0019/vendor-advisoryx_refsource_TRUSTIX
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795vendor-advisoryx_refsource_HP
http://www.vupen.com/english/advisories/2007/1904vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/2016vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/2336vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/3386vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/1905vdb-entryx_refsource_VUPEN
http://security.gentoo.org/glsa/glsa-200711-34.xmlvendor-advisoryx_refsource_GENTOO
http://rhn.redhat.com/errata/RHSA-2007-0889.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2007-0890.htmlvendor-advisoryx_refsource_REDHAT
http://security.gentoo.org/glsa/glsa-200708-05.xmlvendor-advisoryx_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2008-0146.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2007:187vendor-advisoryx_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200710-02.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2007:124vendor-advisoryx_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2007:123vendor-advisoryx_refsource_MANDRIVA
http://security.gentoo.org/glsa/glsa-200805-13.xmlvendor-advisoryx_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2007-0891.htmlvendor-advisoryx_refsource_REDHAT
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.htmlvendor-advisoryx_refsource_FEDORA
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863vendor-advisoryx_refsource_SLACKWARE
http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.htmlvendor-advisoryx_refsource_FEDORA
http://www.novell.com/linux/security/advisories/2007_13_sr.htmlvendor-advisoryx_refsource_SUSE
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.htmlvendor-advisoryx_refsource_OPENPKG
https://exchange.xforce.ibmcloud.com/vulnerabilities/34420vdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10779vdb-entrysignaturex_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2007-2756

Same Patch Batch · n/a · 2007-05-18 · 12 CVEs total

CVE-2007-2757		Redoable 'Index.PHP' 跨站脚本攻击漏洞
CVE-2007-2758		WinImage FAT镜像文件处理多个远程溢出漏洞
CVE-2007-2759		Adempiere 多个SQL注入漏洞
CVE-2007-2760		Adempiere 'MRole.java' 漏洞
CVE-2007-2761		MagicISO '.cue文件' 栈缓冲区溢出漏洞
CVE-2007-2762		Build it Fast (bif3) 'Application.php'多个PHP远程文件包含漏洞
CVE-2007-2763		LEADTOOLS Multimedia 'Ltmm15.dll'控件控制堆缓存溢出漏洞
CVE-2007-2764		Sun Brocade Switches Linux内核拒绝服务漏洞
CVE-2007-2765		BlockHosts 'blockhosts.py'远程拒绝服务漏洞
CVE-2007-2766		Backup Manager MySQL密码安全泄露漏洞
CVE-2007-2682		Mac Adobe Version Cue CS3 Server 防火墙规则安全绕过漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-2756

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2007-2756

I. Basic Information for CVE-2007-2756

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-2756

III. Intelligence Information for CVE-2007-2756

Same Patch Batch · n/a · 2007-05-18 · 12 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2007-2756

Leave a comment