Zurück zur CVE-Übersicht
CVE-2016-7996
HIGH(7.5)AV:N/AC:L/Au:N/C:P/I:P/A:P
Risk Signal Score19/100 — NIEDRIG
- CVSS 7.5 — Hoch
EPSS-Score
1%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
7.5
Technische Schwere
Beschreibung
Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries.
Referenzen
- http://www.debian.org/security/2016/dsa-3746
- http://www.openwall.com/lists/oss-security/2016/10/07/4
- http://www.openwall.com/lists/oss-security/2016/10/08/5
- http://www.securityfocus.com/bid/93464
- http://www.debian.org/security/2016/dsa-3746
- http://www.openwall.com/lists/oss-security/2016/10/07/4
- http://www.openwall.com/lists/oss-security/2016/10/08/5
- http://www.securityfocus.com/bid/93464