HomePentest-Tools.com Logo

GraphicsMagick Memory Corruption And Buffer Overflow Vulnerabilities (Windows) CVE-2016-8682CVE-2016-8683CVE-2016-8684CVE-2016-9830

Severity
CVSSv3 Score
5.5
Vulnerability description

GraphicsMagick is prone to multiple buffer overflow and memory corruption vulnerabilities.

Risk description

Multiple flaws exist as, - A stack-based buffer overflow error in ReadSCTImage function in coders/sct.c script. - A memory corruption error in ReadPCXImage function in coders/pcx.c script. - A memory corruption error in MagickMalloc function in magick/memory.c script. - A memory allocation failure in MagickRealloc function in memory.c script. Successful exploitation will allow remote attackers to cause a denial of service and to have some unspecified impacts.

Recommendation

Upgrade to GraphicsMagick version 1.3.26 (not yet released).

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Feb 15, 2017
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available