Vulnerabilities
Vulnerable Software
Imagemagick:  >> Imagemagick  >> 5.3  Security Vulnerabilities
ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server process that converts image data on behalf of multiple users. This is caused by a missing initialization step in the ReadRLEImage function in coders/rle.c.
CVSS Score
7.5
EPSS Score
0.036
Published
2017-05-19
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file.
CVSS Score
6.5
EPSS Score
0.028
Published
2017-04-20
Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.
CVSS Score
6.5
EPSS Score
0.031
Published
2017-04-20
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS Score
6.5
EPSS Score
0.036
Published
2017-04-20
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS Score
6.5
EPSS Score
0.031
Published
2017-04-20
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVSS Score
6.5
EPSS Score
0.038
Published
2017-04-20
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVSS Score
6.5
EPSS Score
0.025
Published
2017-04-20
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVSS Score
6.5
EPSS Score
0.033
Published
2017-04-20
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS Score
6.5
EPSS Score
0.029
Published
2017-04-20
The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.
CVSS Score
6.5
EPSS Score
0.033
Published
2017-04-20


Contact Us

Shodan ® - All rights reserved