Home

CVE-2012-0260

Description

The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (memory consumption) via a JPEG image with a crafted sequence of restart markers.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.936

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2012-0259,CVE-2012-0260 are affected in Imagemagic (x64) 6.7.6Windows
Vulnerability CVE-2012-0259,CVE-2012-0260 are affected in Imagemagic 6.7.6Windows
Vulnerability CVE-2012-0259,CVE-2012-0260,CVE-2012-1610,CVE-2012-1798 are affected in ImageMagick 6.7.6Windows
Image manipulation programs and library (USN-2132-1) libmagickcore4_6.6.9.7-5ubuntu3.3_i386.debLinux
Image manipulation programs and library (USN-2132-1) libmagickcore4_6.6.9.7-5ubuntu3.3_amd64.debLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-6.2.8.0-15.el5_8.i386.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-6.2.8.0-15.el5_8.x86_64.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-6.2.8.0-15.el5_8.i386.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-6.2.8.0-15.el5_8.x86_64.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-devel-6.2.8.0-15.el5_8.i386.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-c++-devel-6.2.8.0-15.el5_8.x86_64.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-devel-6.2.8.0-15.el5_8.i386.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-devel-6.2.8.0-15.el5_8.x86_64.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-perl-6.2.8.0-15.el5_8.i386.rpmLinux
(RHSA-2012:0545) Moderate: ImageMagick security and bug fix update ImageMagick-perl-6.2.8.0-15.el5_8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234