CVE-2017-6497 - An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL poin

CVE-2017-6497

Summary

An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference (thus, a DoS).

References

Vulnerable Configurations

cpe:2.3:a:imagemagick:imagemagick:6.9.7:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:6.9.7:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	96594
confirm	https://bugs.debian.org/856882 https://github.com/ImageMagick/ImageMagick/commit/7f2dc7a1afc067d0c89f12c82bcdec0445fb1b94

Last major update

13-03-2019 - 13:48

Published

06-03-2017 - 02:59

Last modified

13-03-2019 - 13:48