CVE-2012-0247
Description
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.205
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerability CVE-2012-0247,CVE-2012-0248,CVE-2012-1185,CVE-2012-1186 are affected in Imagemagic (x64) 6.7.5 | Windows |
| Vulnerability CVE-2012-0247,CVE-2012-0248,CVE-2012-1185,CVE-2012-1186 are affected in Imagemagic 6.7.5 | Windows |
| Vulnerability CVE-2012-0247,CVE-2012-0248,CVE-2012-1185,CVE-2012-1186 are affected in ImageMagick 6.7.5 | Windows |
| Image manipulation programs and library (USN-1435-1) imagemagick_6.6.9.7-5ubuntu3_i386.deb | Linux |
| Image manipulation programs and library (USN-1435-1) imagemagick_6.6.9.7-5ubuntu3_amd64.deb | Linux |
| Image manipulation programs and library (USN-1435-1) imagemagick_6.6.9.7-5ubuntu3.3_i386.deb | Linux |
| Image manipulation programs and library (USN-1435-1) imagemagick_6.6.9.7-5ubuntu3.3_amd64.deb | Linux |
| Image manipulation programs and library (USN-1435-1) libmagick++4_6.6.9.7-5ubuntu3.3_i386.deb | Linux |
| Image manipulation programs and library (USN-1435-1) libmagick++4_6.6.9.7-5ubuntu3.3_amd64.deb | Linux |
| imagemagick security update(DSA-3547-1) imagemagick_6.7.7.10-5+deb7u4_i386.deb | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-6.2.8.0-15.el5_8.i386.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-6.2.8.0-15.el5_8.x86_64.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-6.2.8.0-15.el5_8.i386.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-6.2.8.0-15.el5_8.x86_64.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-devel-6.2.8.0-15.el5_8.i386.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-devel-6.2.8.0-15.el5_8.x86_64.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-devel-6.2.8.0-15.el5_8.i386.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-devel-6.2.8.0-15.el5_8.x86_64.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-perl-6.2.8.0-15.el5_8.i386.rpm | Linux |
| (RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-perl-6.2.8.0-15.el5_8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234