Lucene search
Ubuntu.comUB:CVE-2007-4987HistorySep 24, 2007 - 12:00 a.m.
CVE-2007-4987
2007-09-2400:00:00
ubuntu.com
ubuntu.com
11
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
74.3%
Off-by-one error in the ReadBlobString function in blob.c in ImageMagick
before 6.3.5-9 allows context-dependent attackers to execute arbitrary code
via a crafted image file, which triggers the writing of a β\0β character to
an out-of-bounds address.
Bugs
Notes
| Author | Note |
|---|---|
| fujitsu | graphicsmagick doesnβt contain the vulnerable code. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | imagemagick | <Β 6:6.2.4.5-0.6ubuntu0.7 | UNKNOWN |
| ubuntu | 6.10 | noarch | imagemagick | <Β 7:6.2.4.5.dfsg1-0.10ubuntu0.4 | UNKNOWN |
| ubuntu | 7.04 | noarch | imagemagick | <Β 7:6.2.4.5.dfsg1-0.14ubuntu0.2 | UNKNOWN |
| ubuntu | 7.10 | noarch | imagemagick | <Β 7:6.2.4.5.dfsg1-2ubuntu1 | UNKNOWN |
Related
cve
cve
CVE-2007-4987
2007-09-24 22:17:00
seebug
seebug
ImageMagick blob.cζδ»ΆεεθηΌε²εΊζΊ’εΊζΌζ΄
2007-09-25 00:00:00
prion
prion
Out-of-bounds
2007-09-24 22:17:00
nvd
nvd
CVE-2007-4987
2007-09-24 22:17:00
securityvulns
securityvulns
iDefense Security Advisory 09.19.07: Multiple Vendor ImageMagick Off-By-One Vulnerability
2007-09-24 00:00:00
ImageMagic multiple security vulnerabilities
2007-09-24 00:00:00
cvelist
cvelist
CVE-2007-4987
2007-09-24 22:00:00
debiancve
debiancve
CVE-2007-4987
2007-09-24 22:17:00
openvas
openvas
Ubuntu Update for imagemagick vulnerabilities USN-523-1
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200710-27 (imagemagick)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-27 (imagemagick)
2008-09-24 00:00:00
nessus
nessus
openSUSE 10 Security Update : ImageMagick (ImageMagick-4543)
2007-11-01 00:00:00
openSUSE 10 Security Update : GraphicsMagick (GraphicsMagick-4539)
2007-11-01 00:00:00
Mandriva Linux Security Advisory : ImageMagick (MDVSA-2008:035)
2009-04-23 00:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2007-10-03 00:00:00
gentoo
gentoo
ImageMagick: Multiple vulnerabilities
2007-10-24 00:00:00
freebsd
freebsd
ImageMagick -- multiple vulnerabilities
2007-09-19 00:00:00
osv
osv
imagemagick - several vulnerabilities
2009-08-10 00:00:00
debian
debian
[SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities
2009-08-10 17:05:37
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
74.3%
Related for UB:CVE-2007-4987