CVE-2009-1882 - OpenCVE

Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Imagemagick	Imagemagick

Configuration 1 [-]

cpe:2.3:a:imagemagick:imagemagick:6.5.2-8:*:*:*:*:*:*:*

References

Link	Resource
http://imagemagick.org/script/changelog.php
http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033766.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033833.html
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
http://mirror1.smudge-it.co.uk/imagemagick/www/changelog.html
http://osvdb.org/54729
http://secunia.com/advisories/35216	Vendor Advisory
http://secunia.com/advisories/35382
http://secunia.com/advisories/35685
http://secunia.com/advisories/36260
http://secunia.com/advisories/37959
http://secunia.com/advisories/55721
http://security.gentoo.org/glsa/glsa-201311-10.xml
http://wiki.rpath.com/Advisories:rPSA-2010-0074
http://www.debian.org/security/2009/dsa-1858
http://www.openwall.com/lists/oss-security/2009/06/08/1
http://www.securityfocus.com/archive/1/514516/100/0/threaded
http://www.securityfocus.com/bid/35111
http://www.vupen.com/english/advisories/2009/1449
https://usn.ubuntu.com/784-1/

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2009-06-02T15:00:00

Updated: 2018-10-10T18:57:01

Reserved: 2009-06-02T00:00:00

Link: CVE-2009-1882

JSON object: View

NVD Information

Status : Modified

Published: 2009-06-02T15:30:00.360

Modified: 2018-10-10T19:38:34.770

Link: CVE-2009-1882

JSON object: View

Redhat Information

No data.

CWE

CWE-189

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-05-23T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "54729", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/54729"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://wiki.rpath.com/Advisories:rPSA-2010-0074"}, {"name": "GLSA-201311-10", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201311-10.xml"}, {"name": "37959", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/37959"}, {"name": "[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage()", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2009/06/08/1"}, {"name": "USN-784-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/784-1/"}, {"name": "20101027 rPSA-2010-0074-1 ImageMagick", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/514516/100/0/threaded"}, {"name": "35382", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/35382"}, {"name": "FEDORA-2010-0001", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033833.html"}, {"name": "55721", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/55721"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://mirror1.smudge-it.co.uk/imagemagick/www/changelog.html"}, {"name": "35111", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/35111"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://imagemagick.org/script/changelog.php"}, {"name": "35685", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/35685"}, {"name": "35216", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/35216"}, {"name": "DSA-1858", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2009/dsa-1858"}, {"name": "SUSE-SR:2009:012", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"}, {"name": "ADV-2009-1449", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/1449"}, {"name": "FEDORA-2010-0036", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033766.html"}, {"name": "36260", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/36260"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-1882", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "54729", "refsource": "OSVDB", "url": "http://osvdb.org/54729"}, {"name": "http://wiki.rpath.com/Advisories:rPSA-2010-0074", "refsource": "CONFIRM", "url": "http://wiki.rpath.com/Advisories:rPSA-2010-0074"}, {"name": "GLSA-201311-10", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201311-10.xml"}, {"name": "37959", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37959"}, {"name": "[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage()", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2009/06/08/1"}, {"name": "USN-784-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/784-1/"}, {"name": "20101027 rPSA-2010-0074-1 ImageMagick", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/514516/100/0/threaded"}, {"name": "35382", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/35382"}, {"name": "FEDORA-2010-0001", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033833.html"}, {"name": "55721", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/55721"}, {"name": "http://mirror1.smudge-it.co.uk/imagemagick/www/changelog.html", "refsource": "CONFIRM", "url": "http://mirror1.smudge-it.co.uk/imagemagick/www/changelog.html"}, {"name": "35111", "refsource": "BID", "url": "http://www.securityfocus.com/bid/35111"}, {"name": "http://imagemagick.org/script/changelog.php", "refsource": "CONFIRM", "url": "http://imagemagick.org/script/changelog.php"}, {"name": "35685", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/35685"}, {"name": "35216", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/35216"}, {"name": "DSA-1858", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2009/dsa-1858"}, {"name": "SUSE-SR:2009:012", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"}, {"name": "ADV-2009-1449", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/1449"}, {"name": "FEDORA-2010-0036", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033766.html"}, {"name": "36260", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/36260"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-1882", "datePublished": "2009-06-02T15:00:00", "dateReserved": "2009-06-02T00:00:00", "dateUpdated": "2018-10-10T18:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:imagemagick:imagemagick:6.5.2-8:*:*:*:*:*:*:*", "matchCriteriaId": "35578647-CFFF-4005-9C4C-111B7B1EFFE5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Desbordamiento de entero en la funci\u00f3n XMakeImage en magick/xwindow.c en ImageMagick v6.5.2-8 permite a atacantes remotos producir una denegaci\u00f3n de servicio (ca\u00edda) y posiblemente ejecutar arbitraria a trav\u00e9s de un fichero TIFF manipulado, lo que inicia el desbordamiento de b\u00fafer. NOTA: Algunos detalles fueron obtenidos de informaci\u00f3n de terceras partes."}], "id": "CVE-2009-1882", "lastModified": "2018-10-10T19:38:34.770", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2009-06-02T15:30:00.360", "references": [{"source": "cve@mitre.org", "url": "http://imagemagick.org/script/changelog.php"}, {"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033766.html"}, {"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-January/033833.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"}, {"source": "cve@mitre.org", "url": "http://mirror1.smudge-it.co.uk/imagemagick/www/changelog.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/54729"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/35216"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/35382"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/35685"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/36260"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/37959"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/55721"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-201311-10.xml"}, {"source": "cve@mitre.org", "url": "http://wiki.rpath.com/Advisories:rPSA-2010-0074"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2009/dsa-1858"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2009/06/08/1"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/514516/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/35111"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2009/1449"}, {"source": "cve@mitre.org", "url": "https://usn.ubuntu.com/784-1/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}