CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-8707

An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. A crafted TIFF document can lead to an out of bounds write which in particular circumstances could be leveraged into remote code execution. The vulnerability can be triggered through any user controlled TIFF that is handled by this functionality.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.026

EPSS Ranking 85.1%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 6.8

References

http://www.debian.org/security/2017/dsa-3799
http://www.securityfocus.com/bid/94727
http://www.talosintelligence.com/reports/TALOS-2016-0216/
http://www.debian.org/security/2017/dsa-3799
http://www.securityfocus.com/bid/94727
http://www.talosintelligence.com/reports/TALOS-2016-0216/

Products affected by CVE-2016-8707

Imagemagick » Imagemagick » Version: 7.0.3-1

cpe:2.3:a:imagemagick:imagemagick:7.0.3-1
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-8707

Products

Pricing

Contact Us