Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2005-1275

Published: 25/04/2005 Updated: 11/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Graphicsmagick

Vulnerability Summary

Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and previous versions allows remote malicious users to cause a denial of service (application crash) via a PNM file with a small colors value.

Vulnerable Product Search on Vulmon Subscribe to Product

graphicsmagick graphicsmagick 1.1.4

graphicsmagick graphicsmagick 1.1.5

imagemagick imagemagick 6.0.5

imagemagick imagemagick 6.0.6

imagemagick imagemagick 6.1.5

imagemagick imagemagick 6.1.6

imagemagick imagemagick 6.0

imagemagick imagemagick 6.0.1

imagemagick imagemagick 6.0.7

imagemagick imagemagick 6.0.8

imagemagick imagemagick 6.1.7

imagemagick imagemagick 6.1.8

graphicsmagick graphicsmagick 1.0

graphicsmagick graphicsmagick 1.0.6

imagemagick imagemagick 6.0.2

imagemagick imagemagick 6.0.2.5

imagemagick imagemagick 6.1

imagemagick imagemagick 6.1.1.6

imagemagick imagemagick 6.1.2

imagemagick imagemagick 6.2

imagemagick imagemagick 6.2.0.4

graphicsmagick graphicsmagick 1.1

graphicsmagick graphicsmagick 1.1.3

imagemagick imagemagick 6.0.3

imagemagick imagemagick 6.0.4

imagemagick imagemagick 6.1.3

imagemagick imagemagick 6.1.4

imagemagick imagemagick 6.2.0.7

imagemagick imagemagick 6.2.1

Vendor Advisories

Red Hat: ImageMagick security update
Synopsis ImageMagick security update Type/Severity Security Advisory: Important Topic Updated ImageMagick packages that fix a buffer overflow issue are nowavailableThis update has been rated as having important security impact by the RedHat Security Response Team Description ImageMagick(T ...
Ubuntu Security Notice: imagemagick vulnerabilities
Damian Put discovered a buffer overflow in the PNM image decoder Processing a specially crafted PNM file with a small “colors” value resulted in a crash of the application that used the ImageMagick library (CAN-2005-1275) ...

Exploits

Exploit DB: ImageMagick 6.x - '.PNM' Image Decoding Remote Buffer Overflow
source: wwwsecurityfocuscom/bid/13351/info A remotely exploitable client-side buffer-overflow vulnerability affects ImageMagick This issue occurs because the application fails to properly validate the length of user-supplied strings before copying them into static process buffers An attacker may exploit this issue to cause the affected ...

References

NVD-CWE-Otherhttp://seclists.org/lists/bugtraq/2005/Apr/0407.htmlhttp://www.overflow.pl/adv/imheapoverflow.txthttp://bugs.gentoo.org/show_bug.cgi?id=90423http://www.imagemagick.org/script/changelog.phphttp://www.securityfocus.com/bid/13351http://www.mandriva.com/security/advisories?name=MDKSA-2005:107http://www.redhat.com/support/errata/RHSA-2005-413.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A711https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10003https://access.redhat.com/errata/RHSA-2005:413https://usn.ubuntu.com/132-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/25527/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook