Writeup Exploits

62,802 exploits tracked across all sources.

Sort: Activity Stars
CVE-2017-5507 WRITEUP HIGH
ImageMagick - Memory Leak in MPC Coder
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.
CVSS 7.5
CVE-2017-5506 WRITEUP HIGH
ImageMagick - Double Free in magick/profile.c
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVSS 7.8
CVE-2017-18273 WRITEUP MEDIUM
ImageMagick 7.0.7-16 - Denial of Service via Infinite Loop in ReadTXTImage
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted image file that is mishandled in a GetImageIndexInList call.
CVSS 6.5
CVE-2017-18272 WRITEUP MEDIUM
ImageMagick 7.0.7-16-7.0.7-21 - Use-After-Free in ReadOneMNGImage
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-25, there is a use-after-free in ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted MNG image file that is mishandled in an MngInfoDiscardObject call.
CVSS 6.5
CVE-2017-18271 WRITEUP MEDIUM
ImageMagick 7.0.7-16 - Denial of Service via Infinite Loop in ReadMIFFImage
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted MIFF image file.
CVSS 6.5
CVE-2017-18254 WRITEUP MEDIUM
ImageMagick 7.0.7 - Denial of Service via Memory Leak in WriteGIFImage
An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18253 WRITEUP MEDIUM
ImageMagick 7.0.7 - Denial of Service via NULL Pointer Dereference in LoadOpenCLDevices
An issue was discovered in ImageMagick 7.0.7. A NULL pointer dereference vulnerability was found in the function LoadOpenCLDevices in MagickCore/opencl.c, which allows attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18252 WRITEUP MEDIUM
ImageMagick 7.0.7 - Denial of Service via Crafted File in MogrifyImageList
An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service (assertion failure and application exit in ReplaceImageInList) via a crafted file.
CVSS 6.5
CVE-2017-18251 WRITEUP MEDIUM
ImageMagick 7.0.7 - Denial of Service via Memory Leak in ReadPCDImage
An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function ReadPCDImage in coders/pcd.c, which allow remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18250 WRITEUP MEDIUM
ImageMagick 7.0.7 - Denial of Service via NULL Pointer Dereference in LogOpenCLBuildFailure
An issue was discovered in ImageMagick 7.0.7. A NULL pointer dereference vulnerability was found in the function LogOpenCLBuildFailure in MagickCore/opencl.c, which allows attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18211 WRITEUP CRITICAL
ImageMagick 7.0.7 - NULL Pointer Dereference in CacheOpenCLKernel
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.
CVSS 9.8
CVE-2017-18210 WRITEUP CRITICAL
ImageMagick 7.0.7 - Denial of Service via NULL Pointer Dereference in BenchmarkOpenCLDevices
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.
CVSS 9.8
CVE-2017-18209 WRITEUP HIGH
ImageMagick 7.0.7 - NULL Pointer Dereference in GetOpenCLCachedFilesDirectory
In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory.
CVSS 8.8
CVE-2017-18029 WRITEUP MEDIUM
ImageMagick 7.0.6-10 Q16 - Denial of Service via Memory Leak in ReadMATImage
In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18028 WRITEUP MEDIUM
ImageMagick 7.0.7-1 Q16 - Denial of Service via Crafted TIFF File
In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18027 WRITEUP MEDIUM
ImageMagick 7.0.7-1 Q16 - Denial of Service via MAT Image File Memory Leak
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-18022 WRITEUP MEDIUM
ImageMagick 7.0.7-12 - Memory Leak in MontageImageCommand
In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.
CVSS 6.5
CVE-2017-18008 WRITEUP MEDIUM
ImageMagick 7.0.7-17 - Memory Leak in ReadPWPImage
In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c.
CVSS 6.5
CVE-2017-17934 WRITEUP MEDIUM
ImageMagick 7.0.7-17 - Memory Leak in MSL Image Processing
ImageMagick 7.0.7-17 Q16 x86_64 has memory leaks in coders/msl.c, related to MSLPopImage and ProcessMSLScript, and associated with mishandling of MSLPushImage calls.
CVSS 6.5
CVE-2017-17914 WRITEUP MEDIUM
ImageMagick 7.0.7-16 - Denial of Service via Crafted MNG Image File
In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service (ReadOneMNGImage large loop) via a crafted mng image file.
CVSS 6.5
CVE-2017-17887 WRITEUP MEDIUM
ImageMagick 7.0.7-16 Q16 - Denial of Service via MNG Image Processing
In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function GetImagePixelCache in magick/cache.c, which allows attackers to cause a denial of service via a crafted MNG image file that is processed by ReadOneMNGImage.
CVSS 6.5
CVE-2017-17886 WRITEUP MEDIUM
ImageMagick 7.0.7-12 Q16 - Denial of Service via PSD Channel Zip Memory Leak
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service via a crafted psd image file.
CVSS 6.5
CVE-2017-17885 WRITEUP MEDIUM
ImageMagick 7.0.7-12 Q16 - Denial of Service via PICT Image File
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPICTImage in coders/pict.c, which allows attackers to cause a denial of service via a crafted PICT image file.
CVSS 6.5
CVE-2017-17884 WRITEUP MEDIUM
ImageMagick 7.0.7-16 Q16 - Denial of Service via Memory Leak in WriteOnePNGImage
In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file.
CVSS 6.5
CVE-2017-17883 WRITEUP MEDIUM
ImageMagick 7.0.7-12 Q16 - Denial of Service via Memory Leak in ReadPGXImage
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPGXImage in coders/pgx.c, which allows attackers to cause a denial of service via a crafted PGX image file.
CVSS 6.5