Vulnerability CVE-2005-1275

Vulnerability Name:

CVE-2005-1275 (CCN-20262)

Assigned:

2005-04-24

Published:

2005-04-24

Updated:

2017-10-11

Summary:

Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: BugTraq Mailing List, Mon Apr 25 2005 - 00:29:40 CDT
ImageMagick ReadPNMImage() Heap Overflow

Source: MISC
Type: Exploit
http://bugs.gentoo.org/show_bug.cgi?id=90423

Source: MITRE
Type: CNA
CVE-2005-1275

Source: CCN
Type: RHSA-2005-413
ImageMagick security update

Source: BUGTRAQ
Type: Exploit
20050424 [Overflow.pl] ImageMagick ReadPNMImage() Heap Overflow

Source: CONFIRM
Type: Patch
http://www.imagemagick.org/script/changelog.php

Source: CCN
Type: ImageMagick Web site
Introduction to ImageMagick

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2005:107

Source: MISC
Type: Exploit
http://www.overflow.pl/adv/imheapoverflow.txt

Source: REDHAT
Type: UNKNOWN
RHSA-2005:413

Source: BID
Type: Exploit
13351

Source: CCN
Type: BID-13351
ImageMagick PNM Image Decoding Remote Buffer Overflow Vulnerability

Source: CCN
Type: TLSA-2005-75
Two vulnerabilities discovered ImageMagick

Source: CCN
Type: USN-132-1
ImageMagick vulnerabilities

Source: XF
Type: UNKNOWN
imagemagick-readpnmimage-bo(20262)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10003

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:711

Vulnerable Configuration:

Configuration 1:

cpe:/a:graphicsmagick:graphicsmagick:1.0:*:*:*:*:*:*:*

OR cpe:/a:graphicsmagick:graphicsmagick:1.0.6:*:*:*:*:*:*:*

OR cpe:/a:graphicsmagick:graphicsmagick:1.1:*:*:*:*:*:*:*

OR cpe:/a:graphicsmagick:graphicsmagick:1.1.3:*:*:*:*:*:*:*

OR cpe:/a:graphicsmagick:graphicsmagick:1.1.4:*:*:*:*:*:*:*

OR cpe:/a:graphicsmagick:graphicsmagick:1.1.5:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.1:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.2.5:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.3:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.4:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.5:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.6:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.7:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.0.8:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.1.6:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.2:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.3:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.4:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.5:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.6:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.7:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.1.8:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.2:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.2.0.4:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.2.0.7:*:*:*:*:*:*:*

OR cpe:/a:imagemagick:imagemagick:6.2.1:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:10003	V	Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a PNM file with a small colors value.	2013-04-29
oval:org.mitre.oval:def:711	V	ImageMagick Buffer Overflow in ReadPNMImage()	2005-08-18
oval:com.redhat.rhsa:def:20050413	P	RHSA-2005:413: ImageMagick security update (Important)	2005-05-25

BACK