Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.52903
Category:Turbolinux Local Security Tests
Title:Turbolinux TLSA-2004-30 (ImageMagick)
Summary:NOSUMMARY
Description:Description:

The remote host is missing an update to ImageMagick
announced via advisory TLSA-2004-30.

ImageMagick(TM) is an image display and manipulation tool for the X
Window System. ImageMagick can read and write JPEG, TIFF, PNM, GIF and
Photo CD image file formats.

Multiple buffer overflow vulnerabilities in ImageMagick allowing remote
attackers to execute arbitrary code via a malformed image or video file.

These vulnerabilities may allow remote attackers to execute arbitrary
code via a malformed image or video file in AVI or BMP formats.

Solution: Please use the turbopkg (zabom) tool to apply the update.
http://www.securityspace.com/smysecure/catid.html?in=TLSA-2004-30

Risk factor : High

CVSS Score:
7.5

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-0827
Debian Security Information: DSA-547 (Google Search)
http://www.debian.org/security/2004/dsa-547
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11123
http://www.redhat.com/support/errata/RHSA-2004-480.html
http://www.redhat.com/support/errata/RHSA-2004-494.html
http://secunia.com/advisories/28800
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201006-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-231321-1
http://www.vupen.com/english/advisories/2008/0412
XForce ISS Database: imagemagick-bmp-Bo(17173)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17173
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.