ImageMagick ReadDIBImage Integer Overflow Vulnerability

info
discussion
exploit
solution
references

ImageMagick ReadDIBImage Integer Overflow Vulnerability

ImageMagick is prone to an integer-overflow vulnerability because it fails to properly validate user-supplied data.

An attacker can exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will likely cause denial-of-service conditions.

Versions prior to ImageMagick 6.3.5-9 are vulnerable to this issue.