Vulnerabilities

CVE-2007-4033

by Fred · 27/07/2007

Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloadfont function in php_gd2.dll in the gd (PHP_GD2) extension in PHP 5.2.3.

Date published : 2007-07-27

http://www.securityfocus.com/bid/25079

http://www.securityfocus.com/archive/1/480239/100/100/threaded

Similar

Tags: Cybersecurity Alert