CVE-2007-1412

Name of the Vulnerable Software and Affected Versions PHP version 4.4.6

Description The issue allows context-dependent attackers to obtain sensitive information, specifically script source code, by providing a long string in the second argument to the cpdf open function in the ClibPDF (cpdf) extension.

Recommendations For PHP version 4.4.6, consider restricting the use of the cpdf open function until a patch is available, or apply configuration changes to limit the input length for the second argument to prevent exploitation.