CVE-2006-3743

Опубликовано: 25 авг. 2006

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.

Ссылки

ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc
http://bugs.gentoo.org/show_bug.cgi?id=144854
Patch
http://secunia.com/advisories/21615
Patch
Vendor Advisory
http://secunia.com/advisories/21621
Patch
Vendor Advisory
http://secunia.com/advisories/21671
Patch
Vendor Advisory
http://secunia.com/advisories/21679
Patch
Vendor Advisory
http://secunia.com/advisories/21719
Patch
Vendor Advisory
http://secunia.com/advisories/21780
Patch
Vendor Advisory
http://secunia.com/advisories/21832
Patch
Vendor Advisory
http://secunia.com/advisories/22036
http://secunia.com/advisories/22096
http://security.gentoo.org/glsa/glsa-200609-14.xml
http://securitytracker.com/id?1016749
Patch
http://www.debian.org/security/2006/dsa-1168
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:155
http://www.novell.com/linux/security/advisories/2006_50_imagemagick.html
Patch
Vendor Advisory
http://www.osvdb.org/28205
Patch
http://www.redhat.com/support/errata/RHSA-2006-0633.html
Patch
http://www.securityfocus.com/bid/19697
Patch
http://www.ubuntu.com/usn/usn-340-1
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:imagemagick:imagemagick:6.2:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.0.7:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.0.8:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.1:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.1.7:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.2:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.2.5:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.3:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.3.6:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.4:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.4.5:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.5:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.6:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.7:*:*:*:*:*:*:*

cpe:2.3:a:imagemagick:imagemagick:6.2.8:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.02086

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2006-3743

ubuntu

около 19 лет назад

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.

CVE-2006-3743

redhat

около 19 лет назад

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.

CVE-2006-3743

debian

около 19 лет назад

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assis ...

GHSA-vwf7-7g8c-h7pw

github

больше 3 лет назад

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.

EPSS

Процентиль: 83%

0.02086

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other