Security Advisory

CVE-2006-4144

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-08-15 23:00:00

Last updated 2024-08-07 18:57:46

Assigner mitre

State PUBLISHED

Description

Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow.

← Browse all CVEs View on cve.org ↗