CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
Percentile
87.1%
Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun Rasterfile (bitmap) images that trigger heap-based buffer overflows.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | graphicsmagick | < 1.1.7-7 | graphicsmagick_1.1.7-7_all.deb |
Debian | 11 | all | graphicsmagick | < 1.1.7-7 | graphicsmagick_1.1.7-7_all.deb |
Debian | 999 | all | graphicsmagick | < 1.1.7-7 | graphicsmagick_1.1.7-7_all.deb |
Debian | 13 | all | graphicsmagick | < 1.1.7-7 | graphicsmagick_1.1.7-7_all.deb |
Debian | 12 | all | imagemagick | < 7:6.2.4.5.dfsg1-0.10 | imagemagick_7:6.2.4.5.dfsg1-0.10_all.deb |
Debian | 11 | all | imagemagick | < 7:6.2.4.5.dfsg1-0.10 | imagemagick_7:6.2.4.5.dfsg1-0.10_all.deb |
Debian | 999 | all | imagemagick | < 7:6.2.4.5.dfsg1-0.10 | imagemagick_7:6.2.4.5.dfsg1-0.10_all.deb |
Debian | 13 | all | imagemagick | < 7:6.2.4.5.dfsg1-0.10 | imagemagick_7:6.2.4.5.dfsg1-0.10_all.deb |