Test Kennung:	1.3.6.1.4.1.25623.1.0.800515
Kategorie:	Buffer overflow
Titel:	GraphicsMagick Multiple Vulnerabilities - Windows
Zusammenfassung:	GraphicsMagick graphics tool is prone to multiple buffer overflow/underflow vulnerabilities.
Beschreibung:	Summary: GraphicsMagick graphics tool is prone to multiple buffer overflow/underflow vulnerabilities. Vulnerability Insight: Multiple flaws due to: - two boundary errors within the ReadPALMImage function in coders/palm.c, - a boundary error within the DecodeImage function in coders/pict.a, - unknown errors within the processing of XCF, DPX, and CINEON images. - error exists while processing malformed data in DPX which causes input validation vulnerability. Vulnerability Impact: A remote user could execute arbitrary code on the target system and can cause denial-of-service or compromise a vulnerable system via specially crafted PALM, PICT, XCF, DPX, and CINEON images. Affected Software/OS: GraphicsMagick version prior to 1.1.14 and 1.2.3 on Windows. Solution: Update to version 1.1.14 or 1.2.3. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-6070 BugTraq ID: 29583 http://www.securityfocus.com/bid/29583 http://secunia.com/advisories/30549 XForce ISS Database: graphicsmagick-readpalmimage-bo(42904) https://exchange.xforce.ibmcloud.com/vulnerabilities/42904 Common Vulnerability Exposure (CVE) ID: CVE-2008-6071 XForce ISS Database: graphicsmagick-decodeimage-bo(42906) https://exchange.xforce.ibmcloud.com/vulnerabilities/42906 Common Vulnerability Exposure (CVE) ID: CVE-2008-6072 Common Vulnerability Exposure (CVE) ID: CVE-2008-6621 http://osvdb.org/46258 http://www.vupen.com/english/advisories/2008/1767
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.