CVE-2016-6823

Description

Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (crash) via crafted height and width values, which triggers an out-of-bounds write.

Risk Information

Base Score

7.5

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

0.936

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities affected in Imagemagic (x64) 7.0.2	Windows
Multiple vulnerabilities affected in Imagemagick 7.0.2	Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.2	Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234