CVE-2007-4033
CVE-2007-4033
Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloadfont function in php_gd2.dll in the gd (PHP_GD2) extension in PHP 5.2.3.
Productos afectados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/30401no verificadocve_referencewww.exploit-db.com/exploits/4227no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://bugs.gentoo.org/show_bug.cgi?id=193437http://fedoranews.org/updates/FEDORA-2007-234.shtmlhttps://bugzilla.redhat.com/show_bug.cgi?id=303021http://secunia.com/advisories/26241http://secunia.com/advisories/26901http://secunia.com/advisories/26981http://secunia.com/advisories/26992http://secunia.com/advisories/27239http://secunia.com/advisories/27297http://secunia.com/advisories/27439http://secunia.com/advisories/27599http://secunia.com/advisories/27718