Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:102: ImageMagick Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ImageMagick package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:102 (ImageMagick).
Several buffer overflow vulnerabilities in ImageMagick were discovered by Marcus
Meissner from SUSE. These vulnerabilities would allow a possible hacker to create a
malicious image or video file in AVI, BMP, or DIB formats which could crash the
reading process. It may be possible to create malicious images that could also
allow for the execution of arbitray code with the rights of the invoking
user or process.
The updated packages provided are patched to correct these problems.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:102
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.