ID CVE-2017-11188
Summary The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check.
References
Vulnerable Configurations
  • cpe:2.3:a:imagemagick:imagemagick:7.0.6-0
    cpe:2.3:a:imagemagick:imagemagick:7.0.6-0
CVSS
Base: 7.8
Impact:
Exploitability:
CWE CWE-399
CAPEC
refmap via4
bid 99566
confirm https://github.com/ImageMagick/ImageMagick/issues/509
Last major update 12-07-2017 - 11:29
Published 12-07-2017 - 11:29
Last modified 17-07-2017 - 09:18
Back to Top