9.3
CVE-2006-5868
- EPSS 2.65%
- Veröffentlicht 22.11.2006 01:07:00
- Zuletzt bearbeitet 16.06.2026 22:32:02
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Imagemagick ≫ Imagemagick Version >= 6.0 < 6.0.6.2
Imagemagick ≫ Imagemagick Version >= 6.2 < 6.2.4.5
Debian ≫ Debian Linux Version3.1
Debian ≫ Debian Linux Version4.0
Canonical ≫ Ubuntu Linux Version5.10
Canonical ≫ Ubuntu Linux Version6.06 SwEditionlts
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.65% | 0.837 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
http://secunia.com/advisories/24284
http://secunia.com/advisories/22998
http://www.debian.org/security/2006/dsa-1213
http://secunia.com/advisories/24186
http://www.redhat.com/support/errata/RHSA-2007-0015.html
http://secunia.com/advisories/23101
http://secunia.com/advisories/23219
http://www.mandriva.com/security/advisories?name=MDKSA-2006:223
http://www.securityfocus.com/bid/21185
http://www.ubuntu.com/usn/usn-386-1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10612