CVE-2007-4033 — Vulnetix

CVE-2007-4033 PUBLISHED CVSS 7.5 HIGH

Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloadfont function in php_gd2.dll in the gd (PHP_GD2) extension in PHP 5.2.3.

EPSS 31.18% · 96.9th percentile

Risk Scores

CVSS 2.0

7.5

EPSS Score

31.18%

96.9th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
t1lib	t1lib	5.1.1
php	php	5.2.3

Exploit Intelligence

4227 (cve.org)
27239 (circl)
MDKSA-2007:189 (circl)
27743 (circl)
26901 (circl)
oval:org.mitre.oval:def:10557 (circl)
php-imagepsloadfont-bo(35620) (circl)
FEDORA-2007-2343 (circl)
20070921 Re: [Full-disclosure] [USN-515-1] t1lib vulnerability (circl)
DSA-1390 (circl)

…and 30 more exploits

Timeline

Jul 27, 2007 CVE Published
Feb 4, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
Jul 17, 2023 EPSS Score
Sep 8, 2023 EPSS Score
Dec 22, 2023 EPSS Score
Feb 13, 2024 EPSS Score

References

GLSA-200710-12 vendor-advisory
27743 third-party-advisory
26901 third-party-advisory
oval:org.mitre.oval:def:10557 vdb
php-imagepsloadfont-bo(35620) vdb
FEDORA-2007-2343 vendor-advisory
20070921 Re: [Full-disclosure] [USN-515-1] t1lib vulnerability mailing-list
DSA-1390 vendor-advisory
27297 third-party-advisory
GLSA-200805-13 vendor-advisory
20080105 rPSA-2008-0007-1 tetex tetex-afm tetex-dvips tetex-fonts tetex-latex tetex-xdvi mailing-list
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0007 url
https://bugzilla.redhat.com/show_bug.cgi?id=303021 url
FEDORA-2007-750 vendor-advisory
RHSA-2007:1031 vendor-advisory
MDKSA-2007:189 vendor-advisory
4227 exploit
30168 third-party-advisory
https://issues.rpath.com/browse/RPL-1972 url
27239 third-party-advisory

…and 21 more

Open in Interactive Console →