DEBIAN-CVE-2007-1797

DEBIAN-CVE-2007-1797 PUBLISHED CVSS 9.300000190734863 CRITICAL

Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, which results in a heap-based overflow in the ReadDCMImage function, or (2) the (a) colors or (b) comments field in a crafted XWD image, which results in a heap-based overflow in the ReadXWDImage function, different issues than CVE-2007-1667.

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:13	graphicsmagick	0, 0, 0
Debian:14	imagemagick	0, 0, 0
Debian:13	imagemagick	0, 0, 0
Debian:11	imagemagick	0, 0, 0
Debian:14	graphicsmagick	0, 0, 0
Debian:12	imagemagick	0, 0, 0
Debian:11	graphicsmagick	0, 0, 0
Debian:12	graphicsmagick	0, 0, 0

Timeline

Apr 2, 2007 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2007-1797 advisory

Open in Interactive Console →