On Friday 21 September 2007 15:30:31 3APA3A wrote: > Dear Kees Cook, > > CVE-2007-4033 is "Buffer overflow in php_gd2.dll in the gd (PHP_GD2) > extension in PHP 5.2.3 allows context-dependent attackers to execute > arbitrary code via a long argument to the imagepsloadfont function." Correct URL is http://www.bugtraq.ir/adv/t1lib.txt though no CVE is assigned AFAIK. Regards, ismail -- Be the change you want to see in the world.