Vulnerability Details CVE-2014-8561
imagemagick 6.8.9.6 has remote DOS via infinite loop
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.6%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
- http://packetstormsecurity.com/files/128944/ImageMagick-Out-Of-Bounds-Read-Heap-Overflow.html
- http://seclists.org/fulldisclosure/2014/Nov/1
- http://www.openwall.com/lists/oss-security/2014/10/31/3
- https://bugs.gentoo.org/show_bug.cgi?id=CVE-2014-8561
- https://security-tracker.debian.org/tracker/CVE-2014-8561
- http://packetstormsecurity.com/files/128944/ImageMagick-Out-Of-Bounds-Read-Heap-Overflow.html
- http://seclists.org/fulldisclosure/2014/Nov/1
- http://www.openwall.com/lists/oss-security/2014/10/31/3
- https://bugs.gentoo.org/show_bug.cgi?id=CVE-2014-8561
- https://security-tracker.debian.org/tracker/CVE-2014-8561
Products affected by CVE-2014-8561
-
cpe:2.3:a:imagemagick:imagemagick:6.8.9-6
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:debian:debian_linux:9.0