• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ImageMagick SGI Parser Heap Overflow Vulnerability

ImageMagick is prone to a heap-based buffer overflow vulnerability. This vulnerability exists in the SGI image file parser.

Successful exploitation may result in execution of arbitrary code. This issue may potentially be exploited through the ImageMagick application or in other applications that import the SGI image file parser component.

It is noted that the SGI codec is enabled by default in ImageMagick.