Hosting Provided By

Re: [Full-disclosure] [USN-515-1] t1lib vulnerability

From: Ismail Dönmez <ismail(at)pardus.org.tr>
Date: Fri Sep 21 2007 - 09:21:00 EDT

On Friday 21 September 2007 15:30:31 3APA3A wrote:
> Dear Kees Cook,
>
> CVE-2007-4033 is "Buffer overflow in php_gd2.dll in the gd (PHP_GD2)
> extension in PHP 5.2.3 allows context-dependent attackers to execute
> arbitrary code via a long argument to the imagepsloadfont function."

Correct URL is http://www.bugtraq.ir/adv/t1lib.txt though no CVE is assigned AFAIK. Regards,
ismail

-- 
Be the change you want to see in the world.

Received on Fri Sep 21 14:15:00 2007

This message: [ Message body ]
Next message: VulnerabilityResearch(at)DigitalDefense.net: "DDIVRT-2007-04 NetSupport Manager Authentication Bypass"
Previous message: ISR-noreply: "[ISR] - Barracuda Spam Firewall. Cross-Site Scripting"
In reply to: 3APA3A: "Re: [USN-515-1] t1lib vulnerability"
Next in thread: Kees Cook: "Re: [USN-515-1] t1lib vulnerability"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:16:51 EDT