Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-1882
HistoryJun 02, 2009 - 3:30 p.m.

CVE-2009-1882

2009-06-0215:30:00
CWE-189
mitre
web.nvd.nist.gov
53
cve-2009-1882
imagemagick
graphicsmagick
remote attackers
denial of service
buffer overflow
tiff file

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8

Confidence

High

EPSS

0.055

Percentile

93.2%

JSON

Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd
Node
imagemagickimagemagickMatch6.5.2-8
VendorProductVersionCPE
imagemagickimagemagick6.5.2-8cpe:/a:imagemagick:imagemagick:6.5.2-8:::

References

Related

nessus 27
openvas 36
fedora 3
oraclelinux 3
prion 1
ubuntu 1
centos 2
redhat 2
cvelist 1
ubuntucve 1
debiancve 1
securityvulns 2
veracode 1
gentoo 2
nvd 1
debian 2
osv 2
nessus
nessus
CentOS 4 : ImageMagick (CESA-2010:0653)
2010-08-26 00:00:00
ImageMagick < 6.5.2-9 magick/xwindow.c XMakeImage() Function TIFF File Handling Overflow
2009-05-29 00:00:00
Fedora 12 : GraphicsMagick-1.3.7-4.fc12 (2010-0036)
2010-07-01 00:00:00
openvas
openvas
CentOS Update for ImageMagick CESA-2010:0653 centos4 i386
2010-08-30 00:00:00
Mandrake Security Advisory MDVSA-2009:261 (graphicsmagick)
2009-10-13 00:00:00
SLES11: Security update for ImageMagick
2009-10-11 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: GraphicsMagick-1.3.7-4.fc12
2010-01-12 20:38:34
[SECURITY] Fedora 11 Update: ImageMagick-6.5.1.2-2.fc11
2010-01-07 21:51:05
[SECURITY] Fedora 11 Update: GraphicsMagick-1.3.7-4.fc11
2010-01-12 20:48:55
oraclelinux
oraclelinux
ImageMagick security and bug fix update
2010-08-25 00:00:00
ImageMagick security update
2010-08-25 00:00:00
ImageMagick security and bug fix update
2012-03-01 00:00:00
prion
prion
Integer overflow
2009-06-02 15:30:00
ubuntu
ubuntu
ImageMagick vulnerability
2009-06-08 00:00:00
centos
centos
ImageMagick security update
2010-08-25 17:20:42
ImageMagick security update
2010-08-25 17:23:04
redhat
redhat
(RHSA-2010:0653) Moderate: ImageMagick security update
2010-08-25 00:00:00
(RHSA-2010:0652) Moderate: ImageMagick security and bug fix update
2010-08-25 00:00:00
cvelist
cvelist
CVE-2009-1882
2009-06-02 15:00:00
ubuntucve
ubuntucve
CVE-2009-1882
2009-06-02 00:00:00
debiancve
debiancve
CVE-2009-1882
2009-06-02 15:30:00
securityvulns
securityvulns
[USN-784-1] ImageMagick vulnerability
2009-06-09 00:00:00
ImageMagick integer overflow
2009-06-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:47:34
gentoo
gentoo
ImageMagick: User-assisted execution of arbitrary code
2010-06-01 00:00:00
GraphicsMagick: Multiple vulnerabilities
2013-11-19 00:00:00
nvd
nvd
CVE-2009-1882
2009-06-02 15:30:00
debian
debian
[SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities
2009-08-10 17:05:37
[SECURITY] [DSA 1903-1] New graphicsmagick packages fix several vulnerabilities
2009-10-07 19:08:51
osv
osv
imagemagick - several vulnerabilities
2009-08-10 00:00:00
graphicsmagick - several
2009-10-07 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8

Confidence

High

EPSS

0.055

Percentile

93.2%

JSON
Related for CVE-2009-1882
nessus27openvas36fedora3oraclelinux3prion1ubuntu1centos2redhat2cvelist1ubuntucve1debiancve1securityvulns2veracode1gentoo2nvd1debian2osv2