CVE-2007-0770

Related Files

Ubuntu Security Notice 422-1

Posted Feb 16, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 422-1 - Vladimir Nadvornik discovered that the fix for CVE-2006-5456, released in USN-372-1, did not correctly solve the original flaw in PALM image handling. By tricking a user into processing a specially crafted image with an application that uses imagemagick, an attacker could execute arbitrary code with the user's privileges.

tags | advisory, arbitrary

systems | linux, ubuntu

advisories | CVE-2006-5456, CVE-2007-0770

SHA-256 | cee23e6b3e9b45d892509dad68d8c601a2b60ec2baf33ac8500ee8dc1c263d6d

Download | Favorite | View

Debian Linux Security Advisory 1260-1

Posted Feb 14, 2007

Authored by Debian | Site debian.org

Debian Security Advisory 1260-1 - Vladimir Nadvornik discovered that the fix for a vulnerability in the PALM decoder of Imagemagick, a collection of image manipulation programs, was ineffective.

tags | advisory

systems | linux, debian

advisories | CVE-2007-0770

SHA-256 | aa765e35bfdb110955bbb705eadfd520de8170552327d53417c194a5f414cad3

Download | Favorite | View

Mandriva Linux Security Advisory 2007.041

Posted Feb 13, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Security Advisory - Vladimir Nadvornik discovered a buffer overflow in GraphicsMagick and ImageMagick allows user-assisted attackers to cause a denial of service and possibly execute execute arbitrary code via a PALM image that is not properly handled by the ReadPALMImage function in coders/palm.c.

tags | advisory, denial of service, overflow, arbitrary

systems | linux, mandriva

advisories | CVE-2007-0770

SHA-256 | b06cca870f03e4163f5234dd049d33713a4729c8ba5fca52d537d8097de87718

Download | Favorite | View