Denial of Service Vulnerability in ImageMagick by ImageMagick Solutions
CVE-2014-9844
5.5MEDIUM
Key Information:
- Vendor
Opensuse Project
- Status
- Vendor
- CVE Published:
- 20 March 2017
What is CVE-2014-9844?
The ReadRLEImage function in ImageMagick 6.8.9.9 is vulnerable to a denial-of-service attack, enabling remote attackers to exploit this flaw by providing a specially crafted image file. This can lead to an out-of-bounds read, causing potential disruptions and degradation of service for users employing the affected software. Organizations utilizing ImageMagick should assess their versions and apply necessary patches to mitigate this vulnerability.
