ImageMagick < 6.8.9-9 Multiple Vulnerabilities

This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that is affected by
multiple vulnerabilities.

Description :

The remote Windows host is running a version of ImageMagick prior to
version 6.8.9-9. It is, therefore, affected by the following
vulnerabilities :

- An out-of-bounds read error exist in the function
'CloneImage' within file 'image.c' that can allow
application crashes or information disclosure.
(CVE-2014-8354)

- An out-of-bounds read error exist in the function
'ReadPCXImage' within file 'coders/pcx.c' that can
allow application crashes or information disclosure.
(CVE-2014-8355)

- An error exists in the function 'DeleteImageProfile'
related to image processing that can allow denial of
service attacks. (CVE-2014-8561)

- An out-of-bounds read error exists in the 'ReadDCMImage'
function within file 'coders/dcm.c' that can allow
application crashes or information disclosure.
(CVE-2014-8562)

- An off-by-one error exists related to '8BIM' handling
that can allow an attacker to have an unspecified
impact. (VulnDB 113934)

See also :

http://www.imagemagick.org/script/changelog.php
http://www.openwall.com/lists/oss-security/2014/10/29/5

Solution :

Upgrade to ImageMagick version 6.8.9-9 or later.

Note that you may need to manually uninstall the vulnerable version
from the system.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.3
(CVSS2#E:POC/RL:OF/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 78892 ()

Bugtraq ID: 70802
70830
70837
70839

CVE ID: CVE-2014-8354
CVE-2014-8355
CVE-2014-8561
CVE-2014-8562

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now