mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-10 07:47:42 +02:00
0xMarcio
947 B
947 B
CVE-2007-4986
Description
Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.
POC
Reference
- http://www.imagemagick.org/script/changelog.php
- http://www.imagemagick.org/script/changelog.php
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9963
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9963
Github
No PoCs found on GitHub currently.