CVE-2008-3134

{"id": "CVE-2008-3134", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-07-10T23:41:00.000", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.html", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/30879", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/32151", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/forum/forum.php?forum_id=841176", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=610253", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30055", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1020413", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/1984/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43511", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43513", "source": "cve@mitre.org"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/30879", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/32151", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/forum/forum.php?forum_id=841176", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=610253", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/30055", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1020413", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/1984/references", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43511", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43513", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades sin especificar en GraphicsMAgick anterior a 1.2.4, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda, bucle infinito o consumo de memoria) a trav\u00e9s de vectores no especificados en los decodificadores (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, y (9) TGA; y (b) la funci\u00f3n GetImageCharacteristics en magick/image.c, desde un fichero (10) PNG, (11) JPEG, (12) BMP, o (13) TIFF manipulado."}], "lastModified": "2024-11-21T00:48:31.217", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E3834A3-8A7E-4914-A20C-EE694150D044"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F96A991C-67A7-4C36-99C4-846BD2175F5A"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD7E2792-B4BC-4C71-990D-0B7462919568"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10F2FD22-4058-45D6-8352-0AA6382746C8"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BF103AE-6F15-4F2D-A375-F2AF91171EE0"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65929D5C-31B1-4A70-8E9C-AC6749332480"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC45DB14-ABB2-4116-930D-349A81CDB982"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0573F148-0204-4F6B-A7B7-12DDF61C7383"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "489040F9-1992-4030-9AFC-9855CFB8C1EB"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9942F4B-6608-4828-988C-2F76EB73CC48"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12D4C9D5-2A4F-4263-943C-1F46E0BB802E"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FAA39999-2648-4EBB-A9CD-15FBE9900E32"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AD2742D-41F6-43F4-B90B-B75D54E08326"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "634E509D-7E46-43EE-BE38-7C3A7690761D"}, {"criteria": "cpe:2.3:a:graphicsmagick:graphicsmagick:1.2.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C656F3BD-3FB8-484C-8853-853C47BDFCE1"}], "operator": "OR"}]}], "vendorComments": [{"comment": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-3134", "lastModified": "2010-05-14T00:00:00", "organization": "Red Hat"}], "sourceIdentifier": "cve@mitre.org"}