CVE-2007-4916
HP Photo And Imaging Gallery - Memory Corruption
Title source: ruleDescription
Heap-based buffer overflow in the FileFind::FindFile method in (1) MFC42.dll, (2) MFC42u.dll, (3) MFC71.dll, and (4) MFC71u.dll in Microsoft Foundation Class (MFC) Library 8.0, as used by the ListFiles method in hpqutil.dll 2.0.0.138 in Hewlett-Packard (HP) All-in-One and Photo & Imaging Gallery 1.1 and probably other products, allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long first argument.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Jonathan Sarba · textdoswindows
https://www.exploit-db.com/exploits/30593
exploitdb
WORKING POC
VERIFIED
by GOODFELLAS · htmldoswindows
https://www.exploit-db.com/exploits/4409
References (13)
Scores
EPSS
0.7129
EPSS Percentile
98.7%
Details
CWE
CWE-119
Status
published
Products (2)
hp/all-in-on_printer
hp/photo_and_imaging_gallery
1.1
Published
Sep 17, 2007
Tracked Since
Feb 18, 2026