cbcvebase.
CVE-2016-10057
published 2017-03-23

CVE-2016-10057: Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service…

PriorityP278high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
ITWVulnCheck KEVRansomware
Exploited in the wild
EPSS
1.71%
74.5th percentile
Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianimagemagick< imagemagick 8:6.9.6.2+dfsg-2 (bookworm)imagemagick 8:6.9.6.2+dfsg-2 (bookworm)
imagemagickimagemagick<= 6.9.5-7
imagemagickimagemagick>= 0 < 8:6.9.6.2+dfsg-28:6.9.6.2+dfsg-2
imagemagickimagemagick>= 0 < 8:6.9.6.2+dfsg-28:6.9.6.2+dfsg-2
imagemagickimagemagick>= 0 < 8:6.9.6.2+dfsg-28:6.9.6.2+dfsg-2
imagemagickimagemagick>= 0 < 8:6.9.6.2+dfsg-28:6.9.6.2+dfsg-2

Detection & IOCsextracted from sources · hover to see the quote

pathcoders/tiff.c
urlhttps://github.com/ImageMagick/ImageMagick/commit/10b3823a7619ed22d42764733eb052c4159bc8c1
  • Trigger function is WriteGROUP4Image in coders/tiff.c — monitor for crashes or anomalous TIFF/CALS file processing in ImageMagick versions before 6.9.5-8
  • Vulnerability is in the CALS coder of ImageMagick; inspect CALS-format file submissions to ImageMagick-based services as a potential attack vector
  • A maliciously crafted file triggers the overflow; flag unexpected application crashes in ImageMagick processes handling TIFF/CALS input
  • ·All Red Hat Enterprise Linux 5, 6, 7 and OpenShift Enterprise 2 packages are marked 'Will not fix' — patched versions will not be delivered via RHEL channels; operators must mitigate manually
  • ·Fixed version threshold is ImageMagick 6.9.5-8 (upstream) or Debian package 8:6.9.6.2+dfsg-2; ensure deployed version meets or exceeds these thresholds

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.8HIGH
vulncheck7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.