VDB
CVE-2007-4985
CVE-2007-4985
PUBLISHED
Reported by mitre · Published September 24, 2007
ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong function calls.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, *, n/a |
Timeline
- Sep 24, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
- Oct 28, 2023 EPSS Score
References
- 27364 third-party-advisoryx_refsource_SECUNIA
- 29857 third-party-advisoryx_refsource_SECUNIA
- RHSA-2008:0145 vendor-advisoryx_refsource_REDHAT
- 20071112 FLEA-2007-0066-1 ImageMagick mailing-listx_refsource_BUGTRAQ
- USN-523-1 vendor-advisoryx_refsource_UBUNTU
- 27309 third-party-advisoryx_refsource_SECUNIA
- 29786 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- ADV-2007-3245 vdb-entryx_refsource_VUPEN
- GLSA-200710-27 vendor-advisoryx_refsource_GENTOO
- 1018729 vdb-entryx_refsource_SECTRACK
- oval:org.mitre.oval:def:10869 vdb-entrysignaturex_refsource_OVAL
- imagemagick-readdcmimage-readxcfimage-dos(36740) vdb-entryx_refsource_XF
- 27048 third-party-advisoryx_refsource_SECUNIA
- RHSA-2008:0165 vendor-advisoryx_refsource_REDHAT
- 28721 third-party-advisoryx_refsource_SECUNIA
- 27439 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- DSA-1858 vendor-advisoryx_refsource_DEBIAN
- [Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates mailing-listx_refsource_MLIST
…and 7 more