Vulnerability Details CVE-2005-0762
Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://rhn.redhat.com/errata/RHSA-2005-070.html
- http://securitytracker.com/id?1013550
- http://www.debian.org/security/2005/dsa-702
- http://www.novell.com/linux/security/advisories/2005_17_imagemagick.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9736
- http://rhn.redhat.com/errata/RHSA-2005-070.html
- http://securitytracker.com/id?1013550
- http://www.debian.org/security/2005/dsa-702
- http://www.novell.com/linux/security/advisories/2005_17_imagemagick.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9736
Products affected by CVE-2005-0762
-
cpe:2.3:a:imagemagick:imagemagick:5.3.3
-
cpe:2.3:a:imagemagick:imagemagick:5.3.8
-
cpe:2.3:a:imagemagick:imagemagick:5.4.3
-
cpe:2.3:a:imagemagick:imagemagick:5.4.4.5
-
cpe:2.3:a:imagemagick:imagemagick:5.4.7
-
cpe:2.3:a:imagemagick:imagemagick:5.4.8
-
cpe:2.3:a:imagemagick:imagemagick:5.4.8.2.1.1.0
-
cpe:2.3:a:imagemagick:imagemagick:5.5.3.2.1.2.0
-
cpe:2.3:a:imagemagick:imagemagick:5.5.4
-
cpe:2.3:a:imagemagick:imagemagick:5.5.6
-
cpe:2.3:a:imagemagick:imagemagick:5.5.6.0_2003-04-09
-
cpe:2.3:a:imagemagick:imagemagick:5.5.7
-
cpe:2.3:a:imagemagick:imagemagick:6.0
-
cpe:2.3:a:imagemagick:imagemagick:6.0.1