Published: 13/02/2018 Updated: 03/10/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote malicious user to cause a denial of service (application crash) via a maliciously crafted pict file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
imagemagick imagemagick 7.0.7-22

A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/acceleratec file of ImageMagick 707-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file ...

👋 안녕하세요! 프로그램을 분석하고 보안 관점으로 해석하는 것을 즐깁니다 아이디어를 구현하고 문제를 해결하는 것에 흥미가 있습니다 CTF/PS 등 문제 풀이를 즐깁니다 자세한 내용은 여기에 -> pumicenotionsite/ 🖥️ 경력 IoTCube (201901 - 202002) 리서치 팀, 직원 취약점 탐�

CWE-125 https://github.com/ImageMagick/ImageMagick/issues/967 https://nvd.nist.gov https://github.com/ksyang-hj/ksyang-hj https://access.redhat.com/security/cve/cve-2018-6930

CVE-2018-6930

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect