Vulnerability Details : CVE-2007-4033
Potential exploit
Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloadfont function in php_gd2.dll in the gd (PHP_GD2) extension in PHP 5.2.3.
Vulnerability category: OverflowExecute code
Products affected by CVE-2007-4033
- cpe:2.3:a:php:php:5.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:t1lib:t1lib:5.1.1:*:*:*:*:*:*:*
Threat overview for CVE-2007-4033
Top countries where our scanners detected CVE-2007-4033
Top open port discovered on systems with this issue
80
IPs affected by CVE-2007-4033 1,213
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2007-4033!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2007-4033
32.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-4033
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2007-4033
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2007-4033
-
Red Hat 2007-08-01Not vulnerable. Versions of PHP packages as shipped with current Red Hat products are not linked with t1lib.
References for CVE-2007-4033
-
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00724.html
[SECURITY] Fedora Core 6 Update: tetex-3.0-36.fc6
-
http://security.gentoo.org/glsa/glsa-200711-34.xml
CSTeX: Multiple vulnerabilities (GLSA 200711-34) — Gentoo security
-
http://secunia.com/advisories/26241
Vendor Advisory
-
http://www.securityfocus.com/archive/1/485823/100/0/threaded
-
http://secunia.com/advisories/27718
About Secunia Research | Flexera
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/35620
-
http://www.securityfocus.com/archive/1/480239/100/100/threaded
-
http://www.redhat.com/support/errata/RHSA-2007-1031.html
Support
-
http://secunia.com/advisories/28345
-
http://fedoranews.org/updates/FEDORA-2007-234.shtml
-
http://secunia.com/advisories/30168
About Secunia Research | Flexera
-
http://www.novell.com/linux/security/advisories/2007_23_sr.html
404 Page Not Found | SUSE
-
http://secunia.com/advisories/27439
About Secunia Research | FlexeraVendor Advisory
-
http://www.ubuntu.com/usn/usn-515-1
-
http://www.bugtraq.ir/adv/t1lib.txt
-
http://www.debian.org/security/2007/dsa-1390
-
http://www.securitytracker.com/id?1018905
Access Denied
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10557
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:189
-
http://secunia.com/advisories/27743
About Secunia Research | FlexeraVendor Advisory
-
http://bugs.gentoo.org/show_bug.cgi?id=193437
-
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0007
-
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00663.html
[SECURITY] Fedora 7 Update: tetex-3.0-40.3.fc7
-
http://www.securityfocus.com/bid/25079
Exploit
-
http://secunia.com/advisories/27239
Vendor Advisory
-
https://www.exploit-db.com/exploits/4227
-
http://www.redhat.com/support/errata/RHSA-2007-1030.html
Support
-
http://secunia.com/advisories/26901
Vendor Advisory
-
http://security.gentoo.org/glsa/glsa-200710-12.xml
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:230
Mandriva
-
http://security.gentoo.org/glsa/glsa-200805-13.xml
PTeX: Multiple vulnerabilities (GLSA 200805-13) — Gentoo security
-
http://secunia.com/advisories/26981
Vendor Advisory
-
http://www.securityfocus.com/archive/1/487984/100/0/threaded
-
https://bugzilla.redhat.com/show_bug.cgi?id=303021
-
https://issues.rpath.com/browse/RPL-1972
-
http://www.securityfocus.com/archive/1/480244/100/100/threaded
-
http://secunia.com/advisories/27297
-
http://www.redhat.com/support/errata/RHSA-2007-1027.html
Support
-
http://secunia.com/advisories/27599
About Secunia Research | FlexeraVendor Advisory
-
http://secunia.com/advisories/26992
Vendor Advisory
Jump to