Imagemagick

Imagemagick

659 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2012-1798

  • EPSS 1.41%
  • Published 05.06.2012 22:55:10
  • Last modified 11.04.2025 00:51:21

The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted EXIF IFD in a TIFF image.

7.8

CVE-2012-1185

  • EPSS 1.29%
  • Published 05.06.2012 22:55:09
  • Last modified 11.04.2025 00:51:21

Multiple integer overflows in (1) magick/profile.c or (2) magick/property.c in ImageMagick 6.7.5 and earlier allow remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset value in the R...

5.5

CVE-2012-1186

  • EPSS 0.27%
  • Published 05.06.2012 22:55:09
  • Last modified 11.04.2025 00:51:21

Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and earlier allows remote attackers to cause a denial of service (infinite loop) via crafted IOP tag offsets in the IFD in an image. NOTE: this vulnerability exis...

5.5

CVE-2012-0248

  • EPSS 0.29%
  • Published 05.06.2012 22:55:07
  • Last modified 11.04.2025 00:51:21

ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted image whose IFD contains IOP tags that all reference the beginning of the IDF.

6.5

CVE-2012-0259

  • EPSS 1.43%
  • Published 05.06.2012 22:55:07
  • Last modified 11.04.2025 00:51:21

The GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (crash) via a zero value in the component count of an EXIF XResolution tag in a JPEG file, which triggers an out-of-b...

6.5

CVE-2012-0260

  • EPSS 1.94%
  • Published 05.06.2012 22:55:07
  • Last modified 11.04.2025 00:51:21

The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (memory consumption) via a JPEG image with a crafted sequence of restart markers.

8.8

CVE-2012-0247

  • EPSS 4.21%
  • Published 05.06.2012 22:55:06
  • Last modified 11.04.2025 00:51:21

ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.

6.9

CVE-2010-4167

  • EPSS 0.05%
  • Published 22.11.2010 20:00:03
  • Last modified 11.04.2025 00:51:21

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.

9.3

CVE-2009-1882

  • EPSS 3.69%
  • Published 02.06.2009 15:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buf...

6.8

CVE-2008-1096

Exploit
  • EPSS 9.64%
  • Published 05.03.2008 20:44:00
  • Last modified 09.04.2025 00:30:58

The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf ...