<<< Date Index >>>     <<< Thread Index >>>

Re: [Full-disclosure] [USN-515-1] t1lib vulnerability



On Friday 21 September 2007 15:30:31 3APA3A wrote:
> Dear Kees Cook,
>
> CVE-2007-4033  is  "Buffer  overflow  in php_gd2.dll in the gd (PHP_GD2)
> extension  in  PHP  5.2.3  allows context-dependent attackers to execute
> arbitrary code via a long argument to the imagepsloadfont function."

Correct URL is http://www.bugtraq.ir/adv/t1lib.txt though no CVE is assigned 
AFAIK.

Regards,
ismail

-- 
Be the change you want to see in the world.