Lucene search

K

RedhatCVELIST:CVE-2005-0397

HistoryMar 07, 2005 - 5:00 a.m.

CVE-2005-0397

2005-03-0705:00:00

redhat

www.cve.org

7.4 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

Format string vulnerability in the SetImageInfo function in image.c for ImageMagick before 6.0.2.5 may allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a filename argument to convert, which may be called by other web applications.

References

bugs.gentoo.org/show_bug.cgi?id=83542

marc.info/?l=bugtraq&m=110987256010857&w=2

www.debian.org/security/2005/dsa-702

www.gentoo.org/security/en/glsa/glsa-200503-11.xml

www.novell.com/linux/security/advisories/2005_17_imagemagick.html

www.redhat.com/support/errata/RHSA-2005-070.html

www.redhat.com/support/errata/RHSA-2005-320.html

exchange.xforce.ibmcloud.com/vulnerabilities/19586

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10302

7.4 High

AI Score

Confidence

Low

0.066 Low

EPSS

Percentile

93.8%

Related for CVELIST:CVE-2005-0397

nessus11 ubuntu1 ubuntucve2 openvas7 cve2 gentoo1 freebsd1 debiancve2 nvd2 redhat2 cvelist1 prion1 debian2 osv1 suse1