VDB
CVE-2007-0770
CVE-2007-0770
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Buffer overflow in GraphicsMagick and ImageMagick allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c. NOTE: this issue is due to an incomplete patch for CVE-2006-5456.
EPSS 7.12% · 91.7th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
7.12%
91.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| imagemagick | imagemagick | 6.3.3.4 |
| graphicsmagick | graphicsmagick |
Exploit Intelligence
- 24196 (circl)
- 24167 (circl)
- https://issues.rpath.com/browse/RPL-1034 (circl)
- SUSE-SR:2007:003 (circl)
- USN-422-1 (circl)
- 20070208 rPSA-2007-0029-1 ImageMagick (circl)
- 31911 (circl)
- MDKSA-2007:041 (circl)
- DSA-1260 (circl)
Timeline
- Feb 12, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 24196 third-party-advisory
- 24167 third-party-advisory
- https://issues.rpath.com/browse/RPL-1034 url
- SUSE-SR:2007:003 vendor-advisory
- USN-422-1 vendor-advisory
- 20070208 rPSA-2007-0029-1 ImageMagick mailing-list
- 31911 vdb
- MDKSA-2007:041 vendor-advisory
- DSA-1260 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2007-0770 advisory