QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-4986

Back to search

CVE-2007-4986

Published: Sep 24, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow.

VendorProductVersions

n/a

n/a

affected
n/a

References

27364
third-party-advisory
x_refsource_SECUNIA
29857
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0145
vendor-advisory
x_refsource_REDHAT
20071112 FLEA-2007-0066-1 ImageMagick
mailing-list
x_refsource_BUGTRAQ
USN-523-1
vendor-advisory
x_refsource_UBUNTU
27309
third-party-advisory
x_refsource_SECUNIA
29786
third-party-advisory
x_refsource_SECUNIA
ADV-2007-3245
vdb-entry
x_refsource_VUPEN
35316
third-party-advisory
x_refsource_SECUNIA
GLSA-200710-27
vendor-advisory
x_refsource_GENTOO
1018729
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:9963
vdb-entry
signature
x_refsource_OVAL
27048
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0165
vendor-advisory
x_refsource_REDHAT
28721
third-party-advisory
x_refsource_SECUNIA
27439
third-party-advisory
x_refsource_SECUNIA
DSA-1858
vendor-advisory
x_refsource_DEBIAN
26926
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:035
vendor-advisory
x_refsource_MANDRIVA
25763
vdb-entry
x_refsource_BID
SUSE-SR:2007:023
vendor-advisory
x_refsource_SUSE
36260
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now