Threat Encyclopedia



This indicates an attack attempt against an Information Disclosure vulnerability in PHP.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted GIF file. A remote attacker can exploit this to gain access to sensitive information.

affected-products-logoAffected Products

PHP Group PHP prior to 5.6.31
PHP Group PHP prior to 7.0.21
PHP Group PHP prior to 7.1.7


Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.

CVE References