CVE-2006-4144
CVE-2006-4144
Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/28383não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://secunia.com/advisories/21462http://secunia.com/advisories/21525http://secunia.com/advisories/21621http://secunia.com/advisories/21671http://secunia.com/advisories/21679http://secunia.com/advisories/21832http://secunia.com/advisories/22036http://secunia.com/advisories/22096http://secunia.com/advisories/22998http://security.gentoo.org/glsa/glsa-200609-14.xmlhttp://securityreason.com/securityalert/1385