Test ID:	1.3.6.1.4.1.25623.1.0.53236
Category:	Debian Local Security Checks
Title:	Debian Security Advisory DSA 547-1 (imagemagic)
Summary:	The remote host is missing an update to imagemagic;announced via advisory DSA 547-1.
Description:	Summary: The remote host is missing an update to imagemagic announced via advisory DSA 547-1. Vulnerability Insight: Marcus Meissner from SUSE has discovered several buffer overflows in the ImageMagick graphics library. An attacker could create a malicious image or video file in AVI, BMP, or DIB format that could crash the reading process. It might be possible that carefully crafted images could also allow to execute arbitrary code with the capabilities of the invoking process. For the stable distribution (woody) this problem has been fixed in version 5.4.4.5-1woody3. For the unstable distribution (sid) this problem has been fixed in version 6.0.6.2-1. Solution: We recommend that you upgrade your imagemagick packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0827 Debian Security Information: DSA-547 (Google Search) http://www.debian.org/security/2004/dsa-547 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11123 http://www.redhat.com/support/errata/RHSA-2004-480.html http://www.redhat.com/support/errata/RHSA-2004-494.html http://secunia.com/advisories/28800 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201006-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-231321-1 http://www.vupen.com/english/advisories/2008/0412 XForce ISS Database: imagemagick-bmp-Bo(17173) https://exchange.xforce.ibmcloud.com/vulnerabilities/17173
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.