Design/Logic Flaw

The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors...

CVE-2016-5239

CVE-2016-5239 affects ImageMagick prior to 6.9.4-0 and GraphicsMagick; the gnuplot delegate vulnerability allows remote attackers to execute arbitrary commands via crafted images. Exploitation details are not provided in the supplied documents. Remediation is to apply vendor advisories and update...

CVE-2016-5239

The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors...

Debian DSA-3746-1 : graphicsmagick - security update (ImageTragick)

Several vulnerabilities have been discovered in GraphicsMagick, a collection of image processing tool, which can cause denial of service attacks, remote file deletion, and remote command execution. This security update removes the full support of PLT/Gnuplot decoder to prevent Gnuplot-shell based...

Scientific Linux Security Update : ImageMagick on SL6.x, SL7.x i386/x86_64 (20160617)

Security Fixes : - It was discovered that ImageMagick did not properly sanitize certain input before using it to invoke processes. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick...

ImageMagick,GraphicsMagick: Gnuplot delegate vulnerability allowing command injection

It was discovered that ImageMagick did not properly sanitize certain input before passing it to the gnuplot delegate functionality. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick...

CVE-2016-5239

It was discovered that ImageMagick did not properly sanitize certain input before passing it to the gnuplot delegate functionality. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick...

Debian DLA-484-1 : graphicsmagick security update (ImageTragick)

Several security vulnerabilities were discovered in graphicsmagick a tool to manipulate image files. GraphicsMagick is a fork of ImageMagick and also affected by vulnerabilities collectively known as ImageTragick, that are the consequence of lack of sanitization of untrusted input. An attacker wi...

S.u.S.E. Linux 5.2 gnuplot Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/319/info Linux gnuplot 3.5 is shipped with S.u.S.E. Linux 5.2 and installed suid root by default. There is a buffer overflow vulnerability present in gnuplot which allows for users to obtain root access locally. / gnuplot...

openSUSE Security Update : emacs and depending packages (openSUSE-SU-2012:1348-1)

This update fixes the following issues for emacs, emacs-w3, gnuplot and ddskk: emacs : - Add fix for bnc775993 which disable arbitrary lisp code execution when 'enable-local-variables' is set to ':safe' CVE-2012-3479 - Add fix for bnc780653 to allow emacs to parse tar archives with PAX extended...

CVE-2002-2259

Buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0 allows local users to execute arbitrary code as root via unknown attack vectors...

CVE-2002-2259

CVE-2002-2259 describes a buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0, enabling local users to execute arbitrary code as root via unknown attack vectors. The public records indicate the vulnerable component is the patch used in SuSE Linux packaging f...

CVE-2002-2259

Buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0 allows local users to execute arbitrary code as root via unknown attack vectors...

CVE-1999-0409

Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access...

CVE-1999-0409

CVE-1999-0409 affects the GNUplot component used in Linux systems up to version 3.5, where a buffer overflow in gnuplot can allow a local user to gain root privileges. The connected Red Hat and CVE listings corroborate the same description: a local-privilege escalation via a buffer overflow in gn...

CVE-1999-0409

Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access...

S.u.S.E Linux 5.2 - 'gnuplot' Local Overflow / Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/319/info Linux gnuplot 3.5 is shipped with S.u.S.E. Linux 5.2 and installed suid root by default. There is a buffer overflow vulnerability present in gnuplot which allows for users to obtain root access locally. / / gnuplot Linux x86 exploit from xnec...

S.u.S.E Linux 5.2 - gnuplot Local Overflow Local Privilege Escalation

S.u.S.E Linux 5.2 - gnuplot Local Overflow Local Privilege Escalation / source: https://www.securityfocus.com/bid/319/info Linux gnuplot 3.5 is shipped with S.u.S.E. Linux 5.2 and installed suid root by default. There is a buffer overflow vulnerability present in gnuplot which allows for users to...