CVSS: 7.8EPSS: 3%CPEs: 1EXPL: 1CVE-2006-0082
https://notcve.org/view.php?id=CVE-2006-0082
04 Jan 2006 — Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name, a variant of CVE-2005-0397, and as demonstrated using the convert program. • ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.asc • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.8EPSS: 11%CPEs: 1EXPL: 1CVE-2005-4601
https://notcve.org/view.php?id=CVE-2005-4601
31 Dec 2005 — The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command. • ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.asc •
CVSS: 7.8EPSS: 0%CPEs: 58EXPL: 0CVE-2005-3582
https://notcve.org/view.php?id=CVE-2005-3582
16 Nov 2005 — ImageMagick before 6.2.4.2-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime. • http://secunia.com/advisories/17427 •
CVSS: 6.5EPSS: 8%CPEs: 43EXPL: 1CVE-2005-1739
https://notcve.org/view.php?id=CVE-2005-1739
24 May 2005 — The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (infinite loop) via an image with a zero color mask. • http://bugs.gentoo.org/show_bug.cgi?id=90423 •
CVSS: 6.5EPSS: 16%CPEs: 29EXPL: 5CVE-2005-1275 – ImageMagick 6.x - '.PNM' Image Decoding Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-1275
25 Apr 2005 — Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value. • https://www.exploit-db.com/exploits/25527 •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-0760
https://notcve.org/view.php?id=CVE-2005-0760
26 Mar 2005 — The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file. • http://securitytracker.com/id?1013550 •
CVSS: 7.8EPSS: 3%CPEs: 14EXPL: 0CVE-2005-0762
https://notcve.org/view.php?id=CVE-2005-0762
26 Mar 2005 — Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file. • http://rhn.redhat.com/errata/RHSA-2005-070.html •
CVSS: 6.5EPSS: 1%CPEs: 13EXPL: 0CVE-2005-0759
https://notcve.org/view.php?id=CVE-2005-0759
23 Mar 2005 — ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag. • http://securitytracker.com/id?1013550 •
CVSS: 5.5EPSS: 1%CPEs: 31EXPL: 0CVE-2005-0761
https://notcve.org/view.php?id=CVE-2005-0761
23 Mar 2005 — Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file. • http://rhn.redhat.com/errata/RHSA-2005-070.html •
CVSS: 8.8EPSS: 4%CPEs: 4EXPL: 0CVE-2005-0397
https://notcve.org/view.php?id=CVE-2005-0397
07 Mar 2005 — Format string vulnerability in the SetImageInfo function in image.c for ImageMagick before 6.0.2.5 may allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a filename argument to convert, which may be called by other web applications. • http://bugs.gentoo.org/show_bug.cgi?id=83542 •