← back
CVE-2007-4988

CVE-2007-4988

EPSS 3.1%
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.gentoo.org/show_bug.cgi?id=186030http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=597http://secunia.com/advisories/26926http://secunia.com/advisories/27048http://secunia.com/advisories/27309http://secunia.com/advisories/27364http://secunia.com/advisories/27439http://secunia.com/advisories/28721http://secunia.com/advisories/29786http://secunia.com/advisories/36260http://security.gentoo.org/glsa/glsa-200710-27.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/36737