Lucene search
K

518 matches found

redhat
redhat
added 2008/04/17 1:31 a.m.5 views

Infinite loops in ImageMagick's XCF and DCM coders

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...

4.3CVSS5.8AI score0.01814EPSS
Exploits0References4
redhat
redhat
added 2008/04/17 1:26 a.m.4 views

Infinite loops in ImageMagick's XCF and DCM coders

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...

4.3CVSS5.8AI score0.01814EPSS
Exploits0References4
redhat
redhat
added 2008/04/17 1:26 a.m.5 views

Heap overflow in ImageMagick's DCM and XWD coders

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

6.8CVSS7.1AI score0.0353EPSS
Exploits0References4
nessus
nessus
added 2007/12/13 12:0 a.m.30 views

SuSE 10 Security Update : ImageMagick (ZYPP Patch Number 3131)

This update of ImageMagick fixes three integer overflow in DCM and XWD code. These bugs can be exploited remotely via other application. CVE-2007-1667 / CVE-2007-1797 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

9.3CVSS7.2AI score0.04613EPSS
Exploits0References4
nessus
nessus
added 2007/11/10 12:0 a.m.44 views

Ubuntu 6.06 LTS / 6.10 / 7.04 : imagemagick vulnerabilities (USN-523-1)

Multiple vulnerabilities were found in the image decoders of ImageMagick. If a user or automated system were tricked into processing a malicious DCM, DIB, XBM, XCF, or XWD image, a remote attacker could execute arbitrary code with user privileges. Note that Tenable Network Security has extracted...

9.3CVSS7.9AI score0.03819EPSS
Exploits4References5
nessus
nessus
added 2007/11/10 12:0 a.m.29 views

Ubuntu 6.06 LTS / 6.10 / 7.04 : imagemagick vulnerabilities (USN-481-1)

Multiple vulnerabilities were found in ImageMagick's handling of DCM and WXD image files. By tricking a user into processing a specially crafted image with an application that uses imagemagick, an attacker could execute arbitrary code with the user's privileges. Note that Tenable Network Security...

9.3CVSS7.7AI score0.04613EPSS
Exploits0References3
nessus
nessus
added 2007/10/17 12:0 a.m.30 views

openSUSE 10 Security Update : ImageMagick (ImageMagick-3130)

This update of ImageMagick fixes three integer overflow in DCM and XWD code. These bugs can be exploited remotely via other application. CVE-2007-1667,CVE-2007-1797 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

9.3CVSS7.2AI score0.04613EPSS
Exploits0References2
nessus
nessus
added 2007/10/17 12:0 a.m.24 views

openSUSE 10 Security Update : ImageMagick (ImageMagick-2235)

Two security problems were found in GraphicsMagick which are also present in ImageMagick. CVE-2006-5456: Multiple buffer overflows in ImageMagick allowed user-assisted attackers to cause a denial of service and possibly execute arbitrary code via 1 a DCM image that is not properly handled by the...

5.1CVSS8.5AI score0.03481EPSS
Exploits0References1
nessus
nessus
added 2007/10/17 12:0 a.m.22 views

openSUSE 10 Security Update : GraphicsMagick (GraphicsMagick-3129)

This update of GraphicsMagick fixes three integer overflow in DCM and XWD code. These bugs can be exploited remotely via other application. CVE-2007-1667,CVE-2007-1797 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

9.3CVSS7.2AI score0.04613EPSS
Exploits0References2
osv
osv
added 2007/09/24 10:17 p.m.4 views

DEBIAN-CVE-2007-4985

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...

4.3CVSS6.6AI score0.01814EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/09/24 12:0 a.m.36 views

ImageMagic multiple security vulnerabilities

Multiple vulnerabilities on BMP, DCM and another graphics formats parsing...

9.3CVSS2.9AI score0.03819EPSS
Exploits4References4Affected Software1
nessus
nessus
added 2007/07/23 12:0 a.m.26 views

Mandrake Linux Security Advisory : ImageMagick (MDKSA-2007:147)

A number of vulnerabilities were discovered in how ImageMagick handles DCM and XWD image files. If a user were tricked into processing a specially crafted image file with an application that uses ImageMagick, an attacker could cause a heap-based buffer overflow and possibly execute arbitrary code...

9.3CVSS8AI score0.04613EPSS
Exploits0References2
ubuntu
ubuntu
added 2007/07/10 1:32 p.m.75 views

USN-481-1: ImageMagick vulnerabilities

Multiple vulnerabilities were found in ImageMagick's handling of DCM and WXD image files. By tricking a user into processing a specially crafted image with an application that uses imagemagick, an attacker could execute arbitrary code with the user's privileges...

9.3CVSS7.5AI score0.04613EPSS
Exploits0
securityvulns
securityvulns
added 2007/04/03 12:0 a.m.47 views

ImageMagic buffer overflow

Buffer overflow on DCM and XWD images processing...

6.8CVSS4.1AI score0.0353EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2007/04/02 10:19 p.m.28 views

CVE-2007-1797

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

6.8CVSS7.9AI score0.0353EPSS
Exploits0References27
prion
prion
added 2007/04/02 10:19 p.m.27 views

Integer overflow

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

6.8CVSS7.8AI score0.04613EPSS
Exploits0References27Affected Software1
osv
osv
added 2007/04/02 10:19 p.m.11 views

CVE-2007-1797

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

8AI score0.0353EPSS
Exploits0References28
ubuntucve
ubuntucve
added 2007/04/02 10:19 p.m.28 views

CVE-2007-1797

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

6.8CVSS7.6AI score0.0353EPSS
Exploits0References2
cvelist
cvelist
added 2007/04/02 10:0 p.m.29 views

CVE-2007-1797

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via 1 a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or 2 the a colors or b comments field in a crafted XWD image, which results in a heap-based...

8AI score0.0353EPSS
Exploits0References27
cve
cve
added 2007/04/02 10:0 p.m.103 views

CVE-2007-1797

Technical details about CVE-2007-1797 (affected software, root cause, impact, and fixes) are not provided in the connected documents. Monitor for updates from Vulners and advisory sources for concrete remediation and affected products.

6.8CVSS7.9AI score0.0353EPSS
Exploits0References27Affected Software1
Rows per page
Query Builder