CVE-2012-0247
published 2012-06-05CVE-2012-0247: ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | imagemagick | < imagemagick 8:6.6.9.7-7 (bookworm) | imagemagick 8:6.6.9.7-7 (bookworm) |
| debian | imagemagick | < imagemagick 8:6.6.9.7-6 (bookworm) | imagemagick 8:6.6.9.7-6 (bookworm) |
| imagemagick | imagemagick | <= 6.7.5-7 | — |
| imagemagick | imagemagick | <= 6.7.5 | — |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-6 | 8:6.6.9.7-6 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-7 | 8:6.6.9.7-7 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-6 | 8:6.6.9.7-6 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-7 | 8:6.6.9.7-7 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-6 | 8:6.6.9.7-6 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-7 | 8:6.6.9.7-7 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-6 | 8:6.6.9.7-6 |
| imagemagick | imagemagick | >= 0 < 8:6.6.9.7-7 | 8:6.6.9.7-7 |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_eus | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH