logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-3714

Description

The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, (7) WIN, and (8) PLT coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to execute arbitrary code via shell metacharacters in a crafted image, aka "ImageTragick."


Affected Software


CPE Name Name Version
imagemagick:imagemagick imagemagick 7.0.1-0
imagemagick:imagemagick imagemagick 6.9.3-9
imagemagick:imagemagick imagemagick 7.0.0-0
opensuse:opensuse opensuse 13.2
opensuse:leap opensuse leap 42.1
canonical:ubuntu_linux canonical ubuntu linux 12.04
canonical:ubuntu_linux canonical ubuntu linux 14.04
suse:suse_linux_enterprise_server suse suse linux enterprise server 12
canonical:ubuntu_linux canonical ubuntu linux 15.10
debian:debian_linux debian debian linux 8.0
canonical:ubuntu_linux canonical ubuntu linux 16.04
debian:debian_linux debian debian linux 9.0

Related