PRIOn knowledge basePRION:CVE-2013-4298Memory corruption
7 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.041 Low
EPSS
Percentile
91.9%
The ReadGIFImage function in coders/gif.c in ImageMagick before 6.7.8-8 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted comment in a GIF image.
| CPE | Name | Operator | Version |
|---|---|---|---|
| imagemagick | eq | <= 6.7.8-7 | |
| imagemagick | eq | 6.7.8-2 | |
| imagemagick | eq | 6.7.8-3 | |
| imagemagick | eq | 6.7.8-6 | |
| imagemagick | eq | 6.7.8-0 | |
| imagemagick | eq | 6.7.8-1 | |
| imagemagick | eq | 6.7.8-4 | |
| imagemagick | eq | 6.7.8-5 |
References
bugs.debian.org/cgi-bin/bugreport.cgi?bug=721273
secunia.com/advisories/54581
secunia.com/advisories/54671
www.debian.org/security/2013/dsa-2750
www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=23921
www.imagemagick.org/script/changelog.php
www.ubuntu.com/usn/USN-1949-1
bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1218248
Related
7 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.041 Low
EPSS
Percentile
91.9%