CVE-2005-0005

Graphicsmagick - Buffer Overflow

Title source: rule

Description

Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers.

References (7)

[Mailing List] http://marc.info/?l=bugtraq&m=110608222117215&w=2

[Patch, Vendor Advisory] http://www.debian.org/security/2005/dsa-646

[Third Party Advisory] http://www.gentoo.org/security/en/glsa/glsa-200501-37.xml

[Exploit] http://www.idefense.com/application/poi/display?id=184&type=vulnerabilities

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-070.html

[Patch] http://www.redhat.com/support/errata/RHSA-2005-071.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9925

Scores

EPSS 0.0350

EPSS Percentile 87.4%

Classification

Status draft

Affected Products (50)

graphicsmagick/graphicsmagick

imagemagick/imagemagick

... and 35 more

Timeline

Published May 02, 2005

Tracked Since Feb 18, 2026