Lucene search
Veracode Vulnerability DatabaseVERACODE:3915HistoryApr 17, 2017 - 11:42 a.m.
Denial Of Service (DoS)
2017-04-1711:42:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
EPSS
0.007
Percentile
80.4%
ImageMagick is vulnerable to denial of service (DoS) attacks. This is caused by a buffer overflow in the ReadVIFFImage function in coders/viff.c, allowing remote attackers to cause an application crash through an image file.
References
seclists.org/oss-sec/2016/q4/758
www.openwall.com/lists/oss-security/2016/12/26/9
www.securityfocus.com/bid/95217
bugzilla.redhat.com/show_bug.cgi?id=1410491
github.com/ImageMagick/ImageMagick/commit/0474237508f39c4f783208123431815f1ededb76
github.com/ImageMagick/ImageMagick/commit/e45e48b881038487d0bc94d92a16c1537616cc0a
github.com/ImageMagick/ImageMagick/commit/f6e9d0d9955e85bdd7540b251cd50d598dacc5e6
Related
cve
cve
CVE-2016-10066
2017-03-03 17:59:00
prion
prion
Buffer overflow
2017-03-03 17:59:00
nvd
nvd
CVE-2016-10066
2017-03-03 17:59:00
ubuntucve
ubuntucve
CVE-2016-10066
2017-03-03 00:00:00
debiancve
debiancve
CVE-2016-10066
2017-03-03 17:59:00
redhatcve
redhatcve
CVE-2016-10066
2017-01-05 15:47:40
cvelist
cvelist
CVE-2016-10066
2017-03-03 17:00:00
openvas
openvas
ImageMagick Multiple Security Bypass And DoS Vulnerabilities - Mac OS X
2017-01-17 00:00:00
ImageMagick Multiple Security Bypass And DoS Vulnerabilities - Windows
2017-01-16 00:00:00
WordPress < 4.7.1 Multiple Security Vulnerabilities - Windows
2017-01-20 00:00:00
nessus
nessus
ImageMagick 6.x < 6.9.4-5 / 7.x < 7.0.1-7 Multiple DoS
2016-06-24 00:00:00
EulerOS 2.0 SP3 : ImageMagick (EulerOS-SA-2020-1390)
2020-04-15 00:00:00
EulerOS 2.0 SP2 : ImageMagick (EulerOS-SA-2019-2354)
2019-12-10 00:00:00
debian
debian
[BSA-114] Security update for wordpress
2017-01-23 07:39:04
osv
osv
imagemagick - security update
2016-11-26 00:00:00
imagemagick - security update
2016-12-22 00:00:00