ID de Prueba:	1.3.6.1.4.1.25623.1.0.800515
Categoría:	Buffer overflow
Título:	GraphicsMagick Multiple Vulnerabilities - Windows
Resumen:	GraphicsMagick graphics tool is prone to multiple buffer overflow/underflow vulnerabilities.
Descripción:	Summary: GraphicsMagick graphics tool is prone to multiple buffer overflow/underflow vulnerabilities. Vulnerability Insight: Multiple flaws due to: - two boundary errors within the ReadPALMImage function in coders/palm.c, - a boundary error within the DecodeImage function in coders/pict.a, - unknown errors within the processing of XCF, DPX, and CINEON images. - error exists while processing malformed data in DPX which causes input validation vulnerability. Vulnerability Impact: A remote user could execute arbitrary code on the target system and can cause denial-of-service or compromise a vulnerable system via specially crafted PALM, PICT, XCF, DPX, and CINEON images. Affected Software/OS: GraphicsMagick version prior to 1.1.14 and 1.2.3 on Windows. Solution: Update to version 1.1.14 or 1.2.3. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-6070 BugTraq ID: 29583 http://www.securityfocus.com/bid/29583 http://secunia.com/advisories/30549 XForce ISS Database: graphicsmagick-readpalmimage-bo(42904) https://exchange.xforce.ibmcloud.com/vulnerabilities/42904 Common Vulnerability Exposure (CVE) ID: CVE-2008-6071 XForce ISS Database: graphicsmagick-decodeimage-bo(42906) https://exchange.xforce.ibmcloud.com/vulnerabilities/42906 Common Vulnerability Exposure (CVE) ID: CVE-2008-6072 Common Vulnerability Exposure (CVE) ID: CVE-2008-6621 http://osvdb.org/46258 http://www.vupen.com/english/advisories/2008/1767
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.