mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
197 lines
6.8 KiB
JSON
197 lines
6.8 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2007-4986",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, which triggers a heap-based buffer overflow."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "27364",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27364"
|
|
},
|
|
{
|
|
"name": "imagemagick-multiplefunctions-bo(36738)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36738"
|
|
},
|
|
{
|
|
"name": "29857",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29857"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0145",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0145.html"
|
|
},
|
|
{
|
|
"name": "20071112 FLEA-2007-0066-1 ImageMagick",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/483572/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "USN-523-1",
|
|
"refsource": "UBUNTU",
|
|
"url": "http://www.ubuntu.com/usn/usn-523-1"
|
|
},
|
|
{
|
|
"name": "27309",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27309"
|
|
},
|
|
{
|
|
"name": "29786",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29786"
|
|
},
|
|
{
|
|
"name": "http://www.imagemagick.org/script/changelog.php",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.imagemagick.org/script/changelog.php"
|
|
},
|
|
{
|
|
"name": "ADV-2007-3245",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2007/3245"
|
|
},
|
|
{
|
|
"name": "35316",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/35316"
|
|
},
|
|
{
|
|
"name": "GLSA-200710-27",
|
|
"refsource": "GENTOO",
|
|
"url": "http://security.gentoo.org/glsa/glsa-200710-27.xml"
|
|
},
|
|
{
|
|
"name": "1018729",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id?1018729"
|
|
},
|
|
{
|
|
"name": "oval:org.mitre.oval:def:9963",
|
|
"refsource": "OVAL",
|
|
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9963"
|
|
},
|
|
{
|
|
"name": "27048",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27048"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0165",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0165.html"
|
|
},
|
|
{
|
|
"name": "28721",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/28721"
|
|
},
|
|
{
|
|
"name": "27439",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/27439"
|
|
},
|
|
{
|
|
"name": "https://issues.rpath.com/browse/RPL-1743",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://issues.rpath.com/browse/RPL-1743"
|
|
},
|
|
{
|
|
"name": "DSA-1858",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2009/dsa-1858"
|
|
},
|
|
{
|
|
"name": "[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates",
|
|
"refsource": "MLIST",
|
|
"url": "http://studio.imagemagick.org/pipermail/magick-announce/2007-September/000037.html"
|
|
},
|
|
{
|
|
"name": "26926",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/26926"
|
|
},
|
|
{
|
|
"name": "20070919 Multiple Vendor ImageMagick Multiple Integer Overflow Vulnerabilities",
|
|
"refsource": "IDEFENSE",
|
|
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=594"
|
|
},
|
|
{
|
|
"name": "MDVSA-2008:035",
|
|
"refsource": "MANDRIVA",
|
|
"url": "http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:035"
|
|
},
|
|
{
|
|
"name": "25763",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/25763"
|
|
},
|
|
{
|
|
"name": "http://bugs.gentoo.org/show_bug.cgi?id=186030",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://bugs.gentoo.org/show_bug.cgi?id=186030"
|
|
},
|
|
{
|
|
"name": "SUSE-SR:2007:023",
|
|
"refsource": "SUSE",
|
|
"url": "http://www.novell.com/linux/security/advisories/2007_23_sr.html"
|
|
},
|
|
{
|
|
"name": "36260",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/36260"
|
|
}
|
|
]
|
|
}
|
|
} |