Exploit Database

145,562 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-7524 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Out-of-bounds Read in coders/meta.c
coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVSS 6.5
CVE-2016-7523 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Out-of-bounds Read in coders/meta.c
coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVSS 6.5
CVE-2016-7522 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted PSD File
The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
CVE-2016-7521 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Heap-Based Buffer Overflow in PSD Coder
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
CVE-2016-7520 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Heap-Based Buffer Overflow in HDR File Parser
Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.
CVSS 6.5
CVE-2016-7519 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via ReadRLEImage Function
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVSS 6.5
CVE-2016-7518 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted SUN File
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file.
CVSS 6.5
CVE-2016-7517 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted PICT File
The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PICT file.
CVSS 6.5
CVE-2016-7516 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted VIFF File
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted VIFF file.
CVSS 6.5
CVE-2016-7515 WRITEUP MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via ReadRLEImage Out-of-Bounds Read
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.
CVSS 6.5
CVE-2016-7514 WRITEUP MEDIUM
ImageMagick < 7.0.1-0 - Denial of Service via PSD File Out-of-Bounds Read
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
CVE-2016-7514 WRITEUP MEDIUM
ImageMagick < 7.0.1-0 - Denial of Service via PSD File Out-of-Bounds Read
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
CVE-2016-7514 WRITEUP MEDIUM
ImageMagick < 7.0.1-0 - Denial of Service via PSD File Out-of-Bounds Read
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
CVE-2016-5841 WRITEUP CRITICAL
ImageMagick <7.0.2-1 - Memory Corruption
Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.
CVSS 9.8
CVE-2016-5691 WRITEUP CRITICAL
ImageMagick <6.9.4.5 & <7.0.1.7 - Info Disclosure
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.
CVSS 9.8
CVE-2016-5690 WRITEUP CRITICAL
ImageMagick <6.9.4.5, <7.0.1.7 - Remote Code Execution
The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.
CVSS 9.8
CVE-2016-5689 WRITEUP CRITICAL
ImageMagick <6.9.4.5, <7.0.1.7 - Info Disclosure
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.
CVSS 9.8
CVE-2016-5688 WRITEUP HIGH
ImageMagick <6.9.4-4,7.x <7.0.1-5 - Buffer Overflow
The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.
CVSS 8.1
CVE-2016-5688 WRITEUP HIGH
ImageMagick <6.9.4-4,7.x <7.0.1-5 - Buffer Overflow
The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.
CVSS 8.1
CVE-2016-5688 WRITEUP HIGH
ImageMagick <6.9.4-4,7.x <7.0.1-5 - Buffer Overflow
The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.
CVSS 8.1
CVE-2016-10071 WRITEUP MEDIUM
ImageMagick < 6.9.3-10 - Denial of Service via Crafted MAT File
coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
CVSS 5.5
CVE-2016-10070 WRITEUP MEDIUM
ImageMagick <6.9.4-0 - Buffer Overflow
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
CVSS 5.5
CVE-2016-10066 WRITEUP MEDIUM
ImageMagick <6.9.4.5 - Buffer Overflow
Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file.
CVSS 5.5
CVE-2016-10065 WRITEUP HIGH
ImageMagick < 6.9.7-10 - Denial of Service via Crafted VIFF File
The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
CVSS 7.8
CVE-2016-10064 WRITEUP HIGH
ImageMagick <6.9.5-1 - Buffer Overflow
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
CVSS 7.8