2696 matches found
CVE-2007-0770
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for...
CVE-2007-0770
CVE-2007-0770 refers to a buffer overflow in GraphicsMagick/ImageMagick triggered by processing a PALM image, via ReadPALMImage in coders/palm.c, with the issue attributed to an incomplete patch for CVE-2006-5456. The connected SUSE NASL entry notes a security update (ZYPP Patch Number 2592) that...
CVE-2007-0770
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for...
GLSA-200611-07 : GraphicsMagick: PALM and DCM buffer overflows
The remote host is affected by the vulnerability described in GLSA-200611-07 GraphicsMagick: PALM and DCM buffer overflows M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage function of coders/dcm.c, causing the improper handling of DCM images. Pihlaja also report...
[ GLSA 200611-07 ] GraphicsMagick: PALM and DCM buffer overflows
Gentoo Linux Security Advisory GLSA 200611-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GraphicsMagick: PALM and DCM buffer overflows
Background GraphicsMagick is a collection of tools and libraries which support reading, writing, and manipulating images in many major formats. Description M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage function of coders/dcm.c, causing the improper handling o...
GraphicsMagick PALM及DCM图形处理溢出漏洞
GraphicsMagick是一个简单的图像处理工具。 GraphicsMagick的coders/dcm.c文件中ReadDCMImage函数在处理特制DCM图形时存在缓冲区溢出漏洞;coders/palm.c文件中ReadPALMImage函数处理特制PALM图形时也存在堆溢出漏洞。成功利用这些漏洞的攻击者可以在用户系统上执行任意指令。 GraphicsMagick Group GraphicsMagick 1.1.7-9 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2006-5456
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or 2 a PALM image that is not...
CVE-2006-5456
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or 2 a PALM image that is not...
CVE-2006-5456
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or 2 a PALM image that is not...
CVE-2006-5456
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or 2 a PALM image that is not...
CVE-2006-5456
CVE-2006-5456 describes multiple buffer overflows in GraphicsMagick (before 1.1.7) and ImageMagick (ImageMagick 6.0.7) that can be triggered by specially crafted DCM or PALM images. An attacker could cause a denial of service and potentially execute arbitrary code by exploiting improper handling ...
CVE-2006-5456
Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the ReadDCMImage function in coders/dcm.c, or 2 a PALM image that is not...
GLSA-200602-13 : GraphicsMagick: Format string vulnerability
The remote host is affected by the vulnerability described in GLSA-200602-13 GraphicsMagick: Format string vulnerability The SetImageInfo function was found vulnerable to a format string mishandling. Daniel Kobras discovered that the handling of '%'-escaped sequences in filenames passed to the...
GraphicsMagick: Format string vulnerability
Background GraphicsMagick is a collection of tools to read, write and manipulate images in many formats. Description The SetImageInfo function was found vulnerable to a format string mishandling. Daniel Kobras discovered that the handling of "%"-escaped sequences in filenames passed to the functi...
CVE-2006-0082
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...
Format string
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...
CVE-2006-0082
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...
CVE-2006-0082
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...
DEBIAN-CVE-2006-0082
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name...