CVE-2012-0247
- EPSS 3.82%
- Veröffentlicht 05.06.2012 22:55:06
- Zuletzt bearbeitet 16.06.2026 23:36:58
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.
CVE-2010-4167
- EPSS 0.35%
- Veröffentlicht 22.11.2010 20:00:03
- Zuletzt bearbeitet 16.06.2026 23:24:15
Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory.
CVE-2009-1882
- EPSS 7.15%
- Veröffentlicht 02.06.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:16
Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buf...
CVE-2008-1096
- EPSS 4.53%
- Veröffentlicht 05.03.2008 20:44:00
- Zuletzt bearbeitet 16.06.2026 22:50:58
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf ...
CVE-2008-1097
- EPSS 4.48%
- Veröffentlicht 05.03.2008 20:44:00
- Zuletzt bearbeitet 16.06.2026 22:50:59
Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote attackers to cause a denial of service (crash) or possib...
CVE-2007-4985
- EPSS 1.81%
- Veröffentlicht 24.09.2007 22:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:13
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in th...
CVE-2007-4986
- EPSS 3.29%
- Veröffentlicht 24.09.2007 22:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:13
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.
CVE-2007-4987
- EPSS 3.82%
- Veröffentlicht 24.09.2007 22:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:13
Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.
CVE-2007-4988
- EPSS 3.09%
- Veröffentlicht 24.09.2007 22:17:00
- Zuletzt bearbeitet 16.06.2026 22:45:13
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overfl...
CVE-2007-1797
- EPSS 3.53%
- Veröffentlicht 02.04.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:38:18
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in...