Vulnerability CVE-2004-0827 - CERT Civis.Net

Vulnerability Name:

CVE-2004-0827 (CCN-17173)

Assigned:

2004-08-24

Published:

2004-08-24

Updated:

2017-10-11

Summary:

Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: CCN
Type: SGI Security Advisory 20041203-01-U
SGI Advanced Linux Environment 3 Security Update #20

Source: MITRE
Type: CNA
CVE-2004-0827

Source: CCN
Type: RHSA-2004-480
ImageMagick security update

Source: CCN
Type: RHSA-2004-494
ImageMagick security update

Source: CCN
Type: RHSA-2004-636
ImageMagick security update

Source: CCN
Type: SA28800
Sun Solaris ImageMagick Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
28800

Source: SUNALERT
Type: UNKNOWN
231321

Source: CCN
Type: Sun Alert ID: 57648
Security Vulnerabilities in ImageMagick(1) May Allow a Remote Unprivileged User to Execute Arbitrary Code

Source: SUNALERT
Type: UNKNOWN
201006

Source: CCN
Type: Sun Alert ID: 231321
Security Vulnerabilities in ImageMagick May Lead to Arbitrary Code Execution or Denial of Service (DoS)

Source: CCN
Type: ASA-2008-055
Security Vulnerabilities in ImageMagick May Lead to Arbitrary Code Execution or Denial of Service (DoS) (Sun 231321)

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-547

Source: DEBIAN
Type: DSA-547
imagemagick -- buffer overflows

Source: CCN
Type: ImageMagick Web site
ImageMagick - Convert, Edit, and Compose Images

Source: CCN
Type: ImageMagick Download Web page
ImageMagick - Download Source and Binaries

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2004:480

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2004:494

Source: CCN
Type: TLSA-2004-30
Multiple buffer overflow vulnerabilities in ImageMagick

Source: CCN
Type: USN-35-1
imagemagick vulnerabilities

Source: VUPEN
Type: UNKNOWN
ADV-2008-0412

Source: XF
Type: UNKNOWN
imagemagick-bmp-Bo(17173)

Source: XF
Type: UNKNOWN
imagemagick-bmp-Bo(17173)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11123

Source: SUSE
Type: SUSE-SA:2004:031
cups: remote code execution

Vulnerable Configuration:

Configuration 1:

cpe:/a:enlightenment:imlib:1.9:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.1:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.2:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.3:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.4:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.5:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.6:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.7:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.8:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.9:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.10:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.11:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.12:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.13:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib:1.9.14:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0.1:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0.3:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0.4:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.0.5:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.1:*:*:*:*:*:*:*

OR cpe:/a:enlightenment:imlib2:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.3.3:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.4.3:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.4.4.5:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.4.7:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.4.8:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.4.8.2.1.1.0:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.5.3.2.1.2.0:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.5.6.0_2003-04-09:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:5.5.7:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:sun:java_desktop_system:2.0:*:*:*:*:*:*:*

OR cpe:/a:sun:java_desktop_system:2003:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:10.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:9.2:*:amd64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:amd64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:x86_64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:fedora_core:core_3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.0:*:i386:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.2:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.2:*:*:*:*:*:*:*

OR cpe:/o:turbolinux:turbolinux:10.0:*:*:*:desktop:*:*:*

OR cpe:/o:turbolinux:turbolinux:7.0:*:*:*:server:*:*:*

OR cpe:/o:turbolinux:turbolinux:8.0:*:*:*:server:*:*:*

OR cpe:/o:turbolinux:turbolinux:7.0:*:*:*:workstation:*:*:*

OR cpe:/o:turbolinux:turbolinux:8.0:*:*:*:workstation:*:*:*

OR cpe:/o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*

OR cpe:/o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20040827	V	CVE-2004-0827	2015-11-16
oval:org.mitre.oval:def:11123	V	Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.	2013-04-29
oval:com.redhat.rhsa:def:20040636	P	RHSA-2004:636: ImageMagick security update (Important)	2004-12-08
oval:com.redhat.rhsa:def:20040480	P	RHSA-2004:480: ImageMagick security update (Important)	2004-10-20
oval:org.debian:def:547	V	buffer overflows	2004-09-16