Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-4986HistorySep 24, 2007 - 10:17 p.m.
CVE-2007-4986
2007-09-2422:17:00
Debian Security Bug Tracker
security-tracker.debian.org
10
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.4%
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | graphicsmagick | < 1.1.11-1 | graphicsmagick_1.1.11-1_all.deb |
| Debian | 11 | all | graphicsmagick | < 1.1.11-1 | graphicsmagick_1.1.11-1_all.deb |
| Debian | 10 | all | graphicsmagick | < 1.1.11-1 | graphicsmagick_1.1.11-1_all.deb |
| Debian | 999 | all | graphicsmagick | < 1.1.11-1 | graphicsmagick_1.1.11-1_all.deb |
| Debian | 13 | all | graphicsmagick | < 1.1.11-1 | graphicsmagick_1.1.11-1_all.deb |
| Debian | 12 | all | imagemagick | < 7:6.2.4.5.dfsg1-2 | imagemagick_7:6.2.4.5.dfsg1-2_all.deb |
| Debian | 11 | all | imagemagick | < 7:6.2.4.5.dfsg1-2 | imagemagick_7:6.2.4.5.dfsg1-2_all.deb |
| Debian | 10 | all | imagemagick | < 7:6.2.4.5.dfsg1-2 | imagemagick_7:6.2.4.5.dfsg1-2_all.deb |
| Debian | 999 | all | imagemagick | < 7:6.2.4.5.dfsg1-2 | imagemagick_7:6.2.4.5.dfsg1-2_all.deb |
| Debian | 13 | all | imagemagick | < 7:6.2.4.5.dfsg1-2 | imagemagick_7:6.2.4.5.dfsg1-2_all.deb |
Related
securityvulns
securityvulns
iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Multiple Integer Overflow Vulnerabilities
2007-09-24 00:00:00
ImageMagic multiple security vulnerabilities
2007-09-24 00:00:00
cve
cve
CVE-2007-4986
2007-09-24 22:17:00
prion
prion
Integer overflow
2007-09-24 22:17:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:20:11
ubuntucve
ubuntucve
CVE-2007-4986
2007-09-24 00:00:00
openvas
openvas
FreeBSD Ports: ImageMagick, ImageMagick-nox11
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200710-27 (imagemagick)
2008-09-24 00:00:00
CentOS Update for ImageMagick CESA-2008:0165-01 centos2 i386
2009-02-27 00:00:00
nessus
nessus
SuSE 10 Security Update : ImageMagick (ZYPP Patch Number 4541)
2007-12-13 00:00:00
GLSA-200710-27 : ImageMagick: Multiple vulnerabilities
2007-10-25 00:00:00
freebsd
freebsd
ImageMagick -- multiple vulnerabilities
2007-09-19 00:00:00
centos
centos
ImageMagick security update
2008-04-18 00:17:42
ImageMagick security update
2008-04-17 15:52:20
ubuntu
ubuntu
ImageMagick vulnerabilities
2007-10-03 00:00:00
gentoo
gentoo
ImageMagick: Multiple vulnerabilities
2007-10-24 00:00:00
redhat
redhat
(RHSA-2008:0165) Moderate: ImageMagick security update
2008-04-16 00:00:00
(RHSA-2008:0145) Moderate: ImageMagick security update
2008-04-16 00:00:00
oraclelinux
oraclelinux
ImageMagick security and bug fix update
2012-03-01 00:00:00
ImageMagick security update
2008-04-17 00:00:00
debian
debian
osv
osv
imagemagick - several vulnerabilities
2009-08-10 00:00:00
graphicsmagick - several
2009-10-07 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.4%
Related for DEBIANCVE:CVE-2007-4986