Imagemagick

Imagemagick

662 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9

CVE-2010-4167

  • EPSS 0.1%
  • Veröffentlicht 22.11.2010 20:00:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.

9.3

CVE-2009-1882

  • EPSS 3.64%
  • Veröffentlicht 02.06.2009 15:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buf...

6.8

CVE-2008-1096

Exploit
  • EPSS 8.72%
  • Veröffentlicht 05.03.2008 20:44:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf ...

6.8

CVE-2008-1097

Exploit
  • EPSS 6.24%
  • Veröffentlicht 05.03.2008 20:44:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possib...

4.3

CVE-2007-4985

  • EPSS 2.77%
  • Veröffentlicht 24.09.2007 22:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in th...

6.8

CVE-2007-4986

  • EPSS 1.55%
  • Veröffentlicht 24.09.2007 22:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.

9.3

CVE-2007-4987

Exploit
  • EPSS 3.66%
  • Veröffentlicht 24.09.2007 22:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.

7.8

CVE-2007-4988

Exploit
  • EPSS 2.3%
  • Veröffentlicht 24.09.2007 22:17:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overfl...

6.8

CVE-2007-1797

  • EPSS 13.13%
  • Veröffentlicht 02.04.2007 22:19:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in...

9.3

CVE-2007-0770

  • EPSS 7.12%
  • Veröffentlicht 12.02.2007 20:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOT...