CVE-2007-0770

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-0770
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for CVE-2006-5456.

9.3 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://secunia.com/advisories/24167
http://secunia.com/advisories/24196
http://www.debian.org/security/2007/dsa-1260
http://www.mandriva.com/security/advisories?name=MDKSA-2007:041
http://www.novell.com/linux/security/advisories/2007_3_sr.html
http://www.osvdb.org/31911
http://www.securityfocus.com/archive/1/459507/100/0/threaded
http://www.ubuntu.com/usn/usn-422-1
https://issues.rpath.com/browse/RPL-1034
http://secunia.com/advisories/24167
http://secunia.com/advisories/24196
http://www.debian.org/security/2007/dsa-1260
http://www.mandriva.com/security/advisories?name=MDKSA-2007:041
http://www.novell.com/linux/security/advisories/2007_3_sr.html
http://www.osvdb.org/31911
http://www.securityfocus.com/archive/1/459507/100/0/threaded
http://www.ubuntu.com/usn/usn-422-1
https://issues.rpath.com/browse/RPL-1034
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:graphicsmagick:graphicsmagick:*:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:6.3.3.4:*:*:*:*:*:*:*
History

21 Nov 2024, 00:26

Type Values Removed Values Added
References () http://secunia.com/advisories/24167 - () http://secunia.com/advisories/24167 -
References () http://secunia.com/advisories/24196 - () http://secunia.com/advisories/24196 -
References () http://www.debian.org/security/2007/dsa-1260 - () http://www.debian.org/security/2007/dsa-1260 -
References () http://www.mandriva.com/security/advisories?name=MDKSA-2007:041 - () http://www.mandriva.com/security/advisories?name=MDKSA-2007:041 -
References () http://www.novell.com/linux/security/advisories/2007_3_sr.html - () http://www.novell.com/linux/security/advisories/2007_3_sr.html -
References () http://www.osvdb.org/31911 - () http://www.osvdb.org/31911 -
References () http://www.securityfocus.com/archive/1/459507/100/0/threaded - () http://www.securityfocus.com/archive/1/459507/100/0/threaded -
References () http://www.ubuntu.com/usn/usn-422-1 - () http://www.ubuntu.com/usn/usn-422-1 -
References () https://issues.rpath.com/browse/RPL-1034 - () https://issues.rpath.com/browse/RPL-1034 -
Information

Published : 2007-02-12 20:28

Updated : 2024-11-21 00:26

NVD link : CVE-2007-0770

Mitre link : CVE-2007-0770

CVE.ORG link : CVE-2007-0770

JSON object : View

Products Affected

imagemagick

  • imagemagick

graphicsmagick

  • graphicsmagick
CWE
NVD-CWE-Other