|Category:||Denial of Service|
|Title:||GraphicsMagick < 1.3.35 heap-based Buffer Overflow vulnerability (Windows)|
|Summary:||GraphicsMagick is prone to an integer overflow and resultant heap-based; buffer overflow vulnerability.|
GraphicsMagick is prone to an integer overflow and resultant heap-based
buffer overflow vulnerability.
GraphicsMagick has an integer overflow and resultant heap-based buffer
overflow in HuffmanDecodeImage in magick/compress.c.
An attacker attempting to abuse a buffer overflow for a more specific
purpose other than crashing the target system, can purposely overwrite important values in the call stack
of the target machine such as the instruction pointer (IP) or base pointer (BP) in order to execute his or
her potentially malicious unsigned code.
GraphicsMagick prior to version 1.3.35.
Update to GraphicsMagick version 1.3.35 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2020-10938|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.