Vulnerability CVE-2004-0827


Published: 2004-09-16   Modified: 2012-02-12

Description:
Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.

Vendor: Turbolinux
Product: Turbolinux 
Version:
workstation_8.0
workstation_7.0
server_8.0
server_7.0
desktop_10.0
Vendor: Redhat
Product: Fedora core 
Version:
core_3.0
core_2.0
core_1.0
Product: Enterprise linux 
Version: 3.0; 2.1;
Product: Enterprise linux desktop 
Version: 3.0;
Product: Linux advanced workstation 
Version: 2.1;
Vendor: Mandrakesoft
Product: Mandrake linux 
Version: 9.2; 10.0;
Product: Mandrake linux corporate server 
Version: 2.1;
Vendor: SUSE
Product: Suse linux 
Version:
9.2
9.1
9.0
8.2
8.1
8.0
Vendor: Conectiva
Product: Linux 
Version: 9.0; 10.0;
Vendor: Imagemagick
Product: Imagemagick 
Version:
6.0.2
5.5.7
5.5.6.0_2003-04-09
5.5.3.2.1.2.0
5.4.8.2.1.1.0
5.4.8
5.4.7
5.4.4.5
5.4.3
5.3.3
Vendor: Ubuntu
Product: Ubuntu linux 
Version: 4.1;
Vendor: SUN
Product: Java desktop system 
Version: 2003; 2.0;
Vendor: Enlightenment
Product: Imlib 
Version:
1.9.9
1.9.8
1.9.7
1.9.6
1.9.5
1.9.4
1.9.3
1.9.2
1.9.14
1.9.13
1.9.12
1.9.11
1.9.10
1.9.1
1.9
Product: Imlib2 
Version:
1.1.1
1.1
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-231321-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201006-1
http://www.debian.org/security/2004/dsa-547
http://www.redhat.com/support/errata/RHSA-2004-480.html
http://www.redhat.com/support/errata/RHSA-2004-494.html
http://www.vupen.com/english/advisories/2008/0412
https://exchange.xforce.ibmcloud.com/vulnerabilities/17173
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11123

Related CVE
CVE-2018-20167
Terminology before 1.3.1 allows Remote Code Execution because popmedia is mishandled, as demonstrated by an unsafe "cat README.md" command when \e}pn is used. A popmedia control sequence can allow the malicious execution of executable file formats re...
CVE-2016-3993
Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.
CVE-2016-3994
The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read.
CVE-2016-4024
Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation.
CVE-2014-9771
Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation.
CVE-2014-9763
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file.
CVE-2014-9764
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file.
CVE-2014-9762
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a GIF image without a colormap.

Copyright 2019, cxsecurity.com

 

Back to Top