ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
BID:58924
Info
ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
| Bugtraq ID: | 58924 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 07 2013 12:00AM |
| Updated: | Apr 07 2013 12:00AM |
| Credit: | Reported by the vendor |
| Vulnerable: |
ImageMagick ImageMagick 6.8.4 ImageMagick ImageMagick 6.7.6-4 ImageMagick ImageMagick 6.7.6-2 ImageMagick ImageMagick 6.7.5-1 ImageMagick ImageMagick 6.6.8-5 ImageMagick ImageMagick 6.6.5-5 ImageMagick ImageMagick 6.5.2-9 ImageMagick ImageMagick 6.5.2-8 |
| Not Vulnerable: |
ImageMagick ImageMagick 6.8.4-7 Beta |
Discussion
ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
ImageMagick is prone to a denial-of-service vulnerability due to NULL-pointer dereference error.
Attackers can exploit this issue to cause a denial-of-service condition.
ImageMagick is prone to a denial-of-service vulnerability due to NULL-pointer dereference error.
Attackers can exploit this issue to cause a denial-of-service condition.
Exploit / POC
ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
An attacker can use readily available tools to exploit this issue.
An attacker can use readily available tools to exploit this issue.
Solution / Fix
ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
ImageMagick NULL Pointer Dereference Denial of Service Vulnerability
References:
References:
- [PATCH] git-svn-id: https://www.imagemagick.org/subversion/ImageMagick/trunk@116 (cristy)
- ImageMagick Homepage (ImageMagick)
- SegFault in url.c when creating a temp file fails (ImageMagick)