ImageMagick 6.x - '.SGI' Image File Remote Heap Buffer Overflow

EDB-ID:

28383


Author:

Damian Put

Type:

dos


Platform:

Linux

Date:

2006-08-14


source: https://www.securityfocus.com/bid/19507/info

ImageMagick is prone to a remote heap buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

This issue allows attackers to execute arbitrary machine code in the context of applications that use the ImageMagick library.

ImageMagick versions in the 6.x series, up to version 6.2.8, are vulnerable to this issue.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/28383.sgi