CVE-2017-14248CVE-2017-14248

Affected configuration(s):

cpe:/a:imagemagick:imagemagick:7.0.6-8

Date published: 2017-09-11T05:29:00.403-04:00

Date last modified: 2017-11-12T21:29:03.197-05:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: https://github.com/ImageMagick/ImageMagick/issues/717

Summary: A heap-based buffer over-read in SampleImage() in MagickCore/resize.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service via a crafted file.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.