Lucene search

[email protected]CVE-2007-0770

HistoryFeb 12, 2007 - 8:28 p.m.

CVE-2007-0770

2007-02-1220:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

graphicsmagick

imagemagick

buffer overflow

remote attackers

denial of service

arbitrary code execution

palm image

readpalmimage

cve-2007-0770

7.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.04 Low

EPSS

Percentile

92.0%

JSON

Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for CVE-2006-5456.

CPENameOperatorVersion
graphicsmagick:graphicsmagickgraphicsmagickeq*
imagemagick:imagemagickimagemagickeq6.3.3.4

CPE	Name	Operator	Version
graphicsmagick:graphicsmagick	graphicsmagick	eq	*
imagemagick:imagemagick	imagemagick	eq	6.3.3.4

References

secunia.com/advisories/24167

secunia.com/advisories/24196

www.debian.org/security/2007/dsa-1260

www.mandriva.com/security/advisories?name=MDKSA-2007:041

www.novell.com/linux/security/advisories/2007_3_sr.html

www.osvdb.org/31911

www.securityfocus.com/archive/1/459507/100/0/threaded

www.ubuntu.com/usn/usn-422-1

issues.rpath.com/browse/RPL-1034

7.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.04 Low

EPSS

Percentile

92.0%

JSON

Related for CVE-2007-0770

openvas19 debian2 redhatcve1 ubuntucve3 nessus20 prion2 debiancve3 securityvulns4 ubuntu2 cve2 osv2 gentoo2 suse1 slackware1 redhat1 centos2 oraclelinux1 fedora2