Show filters
31 Total Results
Displaying 21-30 of 31
Sort by:
Attacker Value
Unknown

CVE-2017-11478

Disclosure Date: July 20, 2017 (last updated November 26, 2024)
The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed DJVU image.
0
0
Attacker Value
Unknown

CVE-2017-5508

Disclosure Date: March 24, 2017 (last updated November 26, 2024)
Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file.
0
0
Attacker Value
Unknown

CVE-2017-5507

Disclosure Date: March 24, 2017 (last updated November 26, 2024)
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2016-9556

Disclosure Date: March 23, 2017 (last updated November 26, 2024)
The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file.
0
0
Attacker Value
Unknown

CVE-2015-8894

Disclosure Date: March 15, 2017 (last updated November 26, 2024)
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.
0
0
Attacker Value
Unknown

CVE-2015-8895

Disclosure Date: March 15, 2017 (last updated November 26, 2024)
Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.
0
0
Attacker Value
Unknown

CVE-2016-9773

Disclosure Date: February 17, 2017 (last updated November 08, 2023)
Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9556.
0
0
Attacker Value
Unknown

CVE-2016-8678

Disclosure Date: February 15, 2017 (last updated November 26, 2024)
The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted file. NOTE: the vendor says "This is a Q64 issue and we do not support Q64."
0
0
Attacker Value
Unknown

CVE-2016-9298

Disclosure Date: January 27, 2017 (last updated November 25, 2024)
Heap overflow in the WaveletDenoiseImage function in MagickCore/fx.c in ImageMagick before 6.9.6-4 and 7.x before 7.0.3-6 allows remote attackers to cause a denial of service (crash) via a crafted image.
0
0
Attacker Value
Unknown

CVE-2016-7906

Disclosure Date: January 18, 2017 (last updated November 25, 2024)
magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
View More Topics  < Previous  Next >