CVSS: 8.8EPSS: 2%CPEs: 16EXPL: 0CVE-2006-3743
https://notcve.org/view.php?id=CVE-2006-3743
25 Aug 2006 — Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images. Múltiples vulnerabilidades de desbordamiento de búfer en ImageMagick anterior a 6.2.9 permiten a atacantes con la intervención del usuario ejecutar código de su elección mediante imágenes XCF manipuladas. • ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc •
CVSS: 7.8EPSS: 2%CPEs: 16EXPL: 0CVE-2006-3744
https://notcve.org/view.php?id=CVE-2006-3744
25 Aug 2006 — Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun Rasterfile (bitmap) images that trigger heap-based buffer overflows. Múltiples desbordamientos de entero en ImageMagick anterior a 6.2.9 permiten a atacantes con la intervención del usuario ejecutar código de su elección mediante imágenes Sun Rasterfile (bitmap) manipuladas que provocan desbordamientos de búfer basado en montón. • ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 21%CPEs: 29EXPL: 3CVE-2006-4144 – ImageMagick 6.x - '.SGI' Image File Remote Heap Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-4144
15 Aug 2006 — Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow. Desbordamiento de entero en la función ReadSGIImage en sgi.c de ImageMagick anterior a 6.2.9 permite a atacantes con la intervención del usuario provocar una denegación de servicio (caída) y posiblemente ejecutar cód... • https://www.exploit-db.com/exploits/28383 •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2006-2440
https://notcve.org/view.php?id=CVE-2006-2440
18 May 2006 — Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow attackers to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function. • ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc •
CVSS: 7.8EPSS: 3%CPEs: 1EXPL: 1CVE-2006-0082
https://notcve.org/view.php?id=CVE-2006-0082
04 Jan 2006 — Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name, a variant of CVE-2005-0397, and as demonstrated using the convert program. • ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.asc • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.8EPSS: 11%CPEs: 1EXPL: 1CVE-2005-4601
https://notcve.org/view.php?id=CVE-2005-4601
31 Dec 2005 — The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command. • ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.asc •
CVSS: 7.8EPSS: 0%CPEs: 58EXPL: 0CVE-2005-3582
https://notcve.org/view.php?id=CVE-2005-3582
16 Nov 2005 — ImageMagick before 6.2.4.2-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime. • http://secunia.com/advisories/17427 •
CVSS: 6.5EPSS: 8%CPEs: 43EXPL: 1CVE-2005-1739
https://notcve.org/view.php?id=CVE-2005-1739
24 May 2005 — The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (infinite loop) via an image with a zero color mask. • http://bugs.gentoo.org/show_bug.cgi?id=90423 •
CVSS: 6.5EPSS: 16%CPEs: 29EXPL: 5CVE-2005-1275 – ImageMagick 6.x - '.PNM' Image Decoding Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-1275
25 Apr 2005 — Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value. • https://www.exploit-db.com/exploits/25527 •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-0760
https://notcve.org/view.php?id=CVE-2005-0760
26 Mar 2005 — The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file. • http://securitytracker.com/id?1013550 •