CVE-2006-4144
CVE-2006-4144
Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow.
Productos afectados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/28383no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://secunia.com/advisories/21462http://secunia.com/advisories/21525http://secunia.com/advisories/21621http://secunia.com/advisories/21671http://secunia.com/advisories/21679http://secunia.com/advisories/21832http://secunia.com/advisories/22036http://secunia.com/advisories/22096http://secunia.com/advisories/22998http://security.gentoo.org/glsa/glsa-200609-14.xmlhttp://securityreason.com/securityalert/1385