Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2009-1882
Description:Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information.
Test IDs: 1.3.6.1.4.1.25623.1.0.68008   1.3.6.1.4.1.25623.1.0.67899   1.3.6.1.4.1.25623.1.0.65677   1.3.6.1.4.1.25623.1.0.68007   1.3.6.1.4.1.25623.1.0.65739   1.3.6.1.4.1.25623.1.0.65738   1.3.6.1.4.1.25623.1.0.900564   1.3.6.1.4.1.25623.1.0.66409   1.3.6.1.4.1.25623.1.0.64197   1.3.6.1.4.1.25623.1.0.67897   1.3.6.1.4.1.25623.1.0.64637   1.3.6.1.4.1.25623.1.0.66656   1.3.6.1.4.1.25623.1.0.66722   1.3.6.1.4.1.25623.1.0.69006   1.3.6.1.4.1.25623.1.0.123974   1.3.6.1.4.1.25623.1.0.122326   1.3.6.1.4.1.25623.1.0.900565  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-1882
BugTraq ID: 35111
http://www.securityfocus.com/bid/35111
Bugtraq: 20101027 rPSA-2010-0074-1 ImageMagick (Google Search)
http://www.securityfocus.com/archive/1/514516/100/0/threaded
Debian Security Information: DSA-1858 (Google Search)
http://www.debian.org/security/2009/dsa-1858
http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033833.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033766.html
http://security.gentoo.org/glsa/glsa-201311-10.xml
http://www.openwall.com/lists/oss-security/2009/06/08/1
http://osvdb.org/54729
http://secunia.com/advisories/35216
http://secunia.com/advisories/35382
http://secunia.com/advisories/35685
http://secunia.com/advisories/36260
http://secunia.com/advisories/37959
http://secunia.com/advisories/55721
SuSE Security Announcement: SUSE-SR:2009:012 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
https://usn.ubuntu.com/784-1/
http://www.vupen.com/english/advisories/2009/1449




© 1998-2021 E-Soft Inc. All rights reserved.