CVE-2014-2030

HIGH

ImageMagick - Stack-based Buffer Overflow in WritePSDImage Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-2030. PoCs published by Mike Czumak.

AI-analyzed exploit summary This exploit leverages a local buffer overflow in ImageMagick (CVE-2014-2030) by crafting a malformed BMP file and a modified english.xml file to trigger an SEH overwrite, executing arbitrary shellcode via a FatalAppExit() call.

Description

Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-1947.

Exploits (1)

exploitdb WORKING POC

by Mike Czumak · perllocalwindows

https://www.exploit-db.com/exploits/31688

View Code ZIP pw:eip

This exploit leverages a local buffer overflow in ImageMagick (CVE-2014-2030) by crafting a malformed BMP file and a modified english.xml file to trigger an SEH overwrite, executing arbitrary shellcode via a FatalAppExit() call.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ImageMagick < 6.8.8-5

No auth needed

Prerequisites: Local access to the target system · Ability to replace the english.xml file in the ImageMagick installation directory

MITRE ATT&CK