5

CVE-2008-3134

EPSS 1.62%
Published 10.07.2008 23:41:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Graphicsmagick ≫ Graphicsmagick Version1.0

Graphicsmagick ≫ Graphicsmagick Version1.0.4

Graphicsmagick ≫ Graphicsmagick Version1.0.6

Graphicsmagick ≫ Graphicsmagick Version1.1

Graphicsmagick ≫ Graphicsmagick Version1.1.3

Graphicsmagick ≫ Graphicsmagick Version1.1.4

Graphicsmagick ≫ Graphicsmagick Version1.1.5

Graphicsmagick ≫ Graphicsmagick Version1.1.6

Graphicsmagick ≫ Graphicsmagick Version1.1.8

Graphicsmagick ≫ Graphicsmagick Version1.1.9

Graphicsmagick ≫ Graphicsmagick Version1.1.10

Graphicsmagick ≫ Graphicsmagick Version1.1.11

Graphicsmagick ≫ Graphicsmagick Version1.1.12

Graphicsmagick ≫ Graphicsmagick Version1.2

Graphicsmagick ≫ Graphicsmagick Version1.2.18

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.62%	0.802

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.html

http://secunia.com/advisories/32151

http://secunia.com/advisories/30879

Vendor Advisory

http://sourceforge.net/forum/forum.php?forum_id=841176

http://sourceforge.net/project/shownotes.php?release_id=610253

http://www.securityfocus.com/bid/30055

http://www.securitytracker.com/id?1020413

http://www.vupen.com/english/advisories/2008/1984/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/43511

https://exchange.xforce.ibmcloud.com/vulnerabilities/43513

https://nvd.nist.gov/vuln/detail/CVE-2008-3134

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-3134

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-3134

EUVD