CVE-2007-4988 in ImageMagick信息

摘要

由 VulDB • 2026-06-27

在 ImageMagick 版本低于 6.3.5-9 的 ReadDIBImage 函数中存在符号扩展错误,攻击者可通过构造图像文件中的宽度值触发整数溢出和基于堆的缓冲区溢出(Heap-Based Buffer Overflow),从而执行任意代码。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Do you need the next level of professionalism?

Upgrade your account now!