ImageMagick vulnerability

2006-11-2800:00:00

ubuntu.com

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON

Releases

Ubuntu 6.06
Ubuntu 5.10

Details

Daniel Kobras discovered multiple buffer overflows in ImageMagick’s SGI
file format decoder. By tricking a user or an automated system into
processing a specially crafted SGI image, this could be exploited to
execute arbitrary code with the user’s privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu6.06noarchlibmagick9< 6:6.2.4.5-0.6ubuntu0.4UNKNOWN
Ubuntu5.10noarchlibmagick6< 6:6.2.3.4-1ubuntu1.5UNKNOWN