Heap-based Buffer Overflow in ImageMagick by Artifex Software
CVE-2005-1275

Currently unrated

Key Information:

Vendor: Imagemagick
Status: Imagemagick; Graphicsmagick
Vendor: CVE Published:; 25 April 2005

Summary

A heap-based buffer overflow vulnerability exists in the ReadPNMImage function within the pnm.c file of ImageMagick versions 6.2.1 and earlier. This flaw enables remote attackers to craft a malicious PNM file with a specific small colors value that can trigger an application crash, leading to a denial of service. The vulnerability highlights the importance of validating input files and employing proper memory management to prevent such critical failures.

References

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRAKE

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/13351

vdb-entryx_refsource_BID

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Apr 26, 2005
Vulnerability published
Apr 25, 2005