ImageMagick CVE-2017-11752 Information Disclosure Vulnerability

Bugtraq ID:	104966
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Jul 29 2017 12:00AM
Updated:	Jul 29 2017 12:00AM
Credit:	zhouat
Vulnerable:	ImageMagick ImageMagick 7.0.6-4
Not Vulnerable:

ImageMagick CVE-2017-11752 Information Disclosure Vulnerability

ImageMagick is prone to an information-disclosure vulnerability.

An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks.

ImageMagick 7.0.6-4 is vulnerable; other versions may also be affected.

ImageMagick CVE-2017-11752 Information Disclosure Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

ImageMagick CVE-2017-11752 Information Disclosure Vulnerability

References:

• ImageMagick Homepage (Image Magick)
  
• Memoryleaked in acquired image memory (Github)