CVE-2007-4987

ImageMagick - Remote Code Execution via Crafted Image File

Title source: llm

Description

Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address.

References (22)

Core 22

Core References

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/usn-523-1

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/25766

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/36739

Issue Tracking x_refsource_confirm

https://issues.rpath.com/browse/RPL-1743

Various Sources x_refsource_confirm

http://www.imagemagick.org/script/changelog.php

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27364

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/483572/100/0/threaded

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27309

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/3245

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200710-27.xml

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1018729

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27048

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/28721

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27439

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2009/dsa-1858

Various Sources mailing-list x_refsource_mlist

http://studio.imagemagick.org/pipermail/magick-announce/2007-September/000037.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26926

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:035

Third Party Advisory third-party-advisory x_refsource_idefense

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=595

Issue Tracking x_refsource_confirm

http://bugs.gentoo.org/show_bug.cgi?id=186030

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2007_23_sr.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/36260

Scores

EPSS 0.0381

EPSS Percentile 88.2%

Details

CWE

CWE-189

Status published

Products (50)

imagemagick/imagemagick 5.3.3

imagemagick/imagemagick 5.3.8

imagemagick/imagemagick 5.4.2.3

imagemagick/imagemagick 5.4.3

imagemagick/imagemagick 5.4.4.5

imagemagick/imagemagick 5.4.7

imagemagick/imagemagick 5.4.8

imagemagick/imagemagick 5.4.8.2_1.1.0

imagemagick/imagemagick 5.5.3_.2_1.2.0

imagemagick/imagemagick 5.5.4

... and 40 more

Published Sep 24, 2007

Tracked Since Feb 18, 2026