Description
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability.
References (1)
Core 1
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105820576111599&w=2
Scores
EPSS
0.0095
EPSS Percentile
76.7%
Details
Status
published
Products (1)
imagemagick/imagemagick
5.4.3
Published
Aug 18, 2003
Tracked Since
Feb 18, 2026