Showing 1 - 3 of 3

CVE-2006-4144

Status Candidate

Overview

Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow.

Related Files

Debian Linux Security Advisory 1213-1: Posted Nov 20, 2006; Authored by Debian | Site debian.org; Debian Security Advisory 1213-1 - Several remote vulnerabilities have been discovered in Imagemagick, a collection of image manipulation programs, which may lead to the execution of arbitrary code.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, debian; advisories | CVE-2006-0082, CVE-2006-4144, CVE-2006-5456, CVE-2006-5868; SHA-256 | fd34820ccc0199bf2274c42799d00c8faecef20472e952f0e66a75d4d7df7f29; Download | Favorite | View

Mandriva Linux Security Advisory 2006.155: Posted Aug 29, 2006; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory MDKSA-2006-155 - Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images. Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun bitmap images that trigger heap-based buffer overflows. An integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large bytes_per_pixel, columns, and rows values, which trigger a heap-based buffer overflow.; tags | advisory, denial of service, overflow, arbitrary; systems | linux, mandriva; advisories | CVE-2006-3743, CVE-2006-3744, CVE-2006-4144; SHA-256 | 17ea48c30ae262993a867073c259c4ec7c7c700fdadae830130ae4309c554f4c; Download | Favorite | View

Ubuntu Security Notice 337-1: Posted Aug 27, 2006; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice USN-337-1 - Damian Put discovered a buffer overflow in imagemagick's SGI file format decoder. By tricking an user or automated system into processing a specially crafted SGI image, this could be exploited to execute arbitrary code with the user's privileges.; tags | advisory, overflow, arbitrary; systems | linux, ubuntu; advisories | CVE-2006-4144; SHA-256 | b0a994a1d3a25e132895df0d702e1195e96cffaef8cbdc41935e7d54f1d1e857; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2006-4144

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems