| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-4988 | 6.8 |
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overfl
|
02-02-2024 - 02:45 | 24-09-2007 - 22:17 | |
| CVE-2016-6520 | 6.4 |
Buffer overflow in MagickCore/enhance.c in ImageMagick before 7.0.2-7 allows remote attackers to have unspecified impact via vectors related to pixel cache morphology.
|
13-04-2021 - 15:57 | 13-12-2016 - 15:59 | |
| CVE-2007-4986 | 6.8 |
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.
|
15-10-2018 - 21:39 | 24-09-2007 - 22:17 | |
| CVE-2007-4985 | 4.3 |
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in th
|
15-10-2018 - 21:39 | 24-09-2007 - 22:17 | |
| CVE-2007-4987 | 9.3 |
Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.
|
15-10-2018 - 21:39 | 24-09-2007 - 22:17 | |
| CVE-2010-4167 | 6.9 |
Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory. Per: http://
|
06-01-2018 - 02:29 | 22-11-2010 - 20:00 | |
| CVE-2005-1275 | 5.0 |
Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value.
|
11-10-2017 - 01:30 | 25-04-2005 - 04:00 | |
| CVE-2016-4562 | 6.8 |
The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain vertices integer data, which allows remote attackers to cause a denial of service (buffer overflow and applicati
|
23-09-2016 - 02:00 | 04-06-2016 - 16:59 | |
| CVE-2016-4564 | 7.5 |
The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and
|
23-09-2016 - 02:00 | 04-06-2016 - 16:59 | |
| CVE-2016-4563 | 6.8 |
The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service
|
23-09-2016 - 02:00 | 04-06-2016 - 16:59 | |
| CVE-2013-4298 | 4.3 |
The ReadGIFImage function in coders/gif.c in ImageMagick before 6.7.8-8 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted comment in a GIF image.
|
18-09-2013 - 03:29 | 10-09-2013 - 19:55 |