2017-10-16 12:31:07 -04:00
{
2019-03-17 23:55:42 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2007-4985" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
2017-10-16 12:31:07 -04:00
]
2019-03-17 23:55:42 +00:00
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or (2) an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong function calls."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "27364" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/27364"
} ,
{
"name" : "29857" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/29857"
} ,
{
"name" : "RHSA-2008:0145" ,
"refsource" : "REDHAT" ,
"url" : "http://www.redhat.com/support/errata/RHSA-2008-0145.html"
} ,
{
"name" : "20071112 FLEA-2007-0066-1 ImageMagick" ,
"refsource" : "BUGTRAQ" ,
"url" : "http://www.securityfocus.com/archive/1/483572/100/0/threaded"
} ,
{
"name" : "USN-523-1" ,
"refsource" : "UBUNTU" ,
"url" : "http://www.ubuntu.com/usn/usn-523-1"
} ,
{
"name" : "27309" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/27309"
} ,
{
"name" : "29786" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/29786"
} ,
{
"name" : "http://www.imagemagick.org/script/changelog.php" ,
"refsource" : "CONFIRM" ,
"url" : "http://www.imagemagick.org/script/changelog.php"
} ,
{
"name" : "ADV-2007-3245" ,
"refsource" : "VUPEN" ,
"url" : "http://www.vupen.com/english/advisories/2007/3245"
} ,
{
"name" : "GLSA-200710-27" ,
"refsource" : "GENTOO" ,
"url" : "http://security.gentoo.org/glsa/glsa-200710-27.xml"
} ,
{
"name" : "1018729" ,
"refsource" : "SECTRACK" ,
"url" : "http://www.securitytracker.com/id?1018729"
} ,
{
"name" : "oval:org.mitre.oval:def:10869" ,
"refsource" : "OVAL" ,
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10869"
} ,
{
"name" : "imagemagick-readdcmimage-readxcfimage-dos(36740)" ,
"refsource" : "XF" ,
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/36740"
} ,
{
"name" : "27048" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/27048"
} ,
{
"name" : "RHSA-2008:0165" ,
"refsource" : "REDHAT" ,
"url" : "http://www.redhat.com/support/errata/RHSA-2008-0165.html"
} ,
{
"name" : "28721" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/28721"
} ,
{
"name" : "27439" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/27439"
} ,
{
"name" : "https://issues.rpath.com/browse/RPL-1743" ,
"refsource" : "CONFIRM" ,
"url" : "https://issues.rpath.com/browse/RPL-1743"
} ,
{
"name" : "DSA-1858" ,
"refsource" : "DEBIAN" ,
"url" : "http://www.debian.org/security/2009/dsa-1858"
} ,
{
"name" : "[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates" ,
"refsource" : "MLIST" ,
"url" : "http://studio.imagemagick.org/pipermail/magick-announce/2007-September/000037.html"
} ,
{
"name" : "26926" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/26926"
} ,
{
"name" : "MDVSA-2008:035" ,
"refsource" : "MANDRIVA" ,
"url" : "http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:035"
} ,
{
"name" : "20070919 Multiple Vendor ImageMagick Multiple Denial of Service Vulnerabilities" ,
"refsource" : "IDEFENSE" ,
"url" : "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=596"
} ,
{
"name" : "25764" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/25764"
} ,
{
"name" : "http://bugs.gentoo.org/show_bug.cgi?id=186030" ,
"refsource" : "CONFIRM" ,
"url" : "http://bugs.gentoo.org/show_bug.cgi?id=186030"
} ,
{
"name" : "SUSE-SR:2007:023" ,
"refsource" : "SUSE" ,
"url" : "http://www.novell.com/linux/security/advisories/2007_23_sr.html"
} ,
{
"name" : "36260" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/36260"
}
]
}
}
