Detections
Analytics
Mandrake Linux Security Advisory : ImageMagick (MDKSA-2004:143)
critical Nessus Plugin ID 15916
Synopsis
The remote Mandrake Linux host is missing one or more security updates.Description
A vulnerability was discovered in ImageMagick where, due to a boundary error within the EXIF parsing routine, a specially crafted graphic image could potentially lead to the execution of arbitrary code.The updated packages have been patched to prevent this problem.
Solution
Update the affected packages.Plugin Details
Severity: Critical
ID: 15916
File Name: mandrake_MDKSA-2004-143.nasl
Version: 1.18
Type: local
Family: Mandriva Local Security Checks
Published: 12/7/2004
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:mandriva:linux:imagemagick, p-cpe:/a:mandriva:linux:imagemagick-doc, p-cpe:/a:mandriva:linux:lib64magick5.5.7, p-cpe:/a:mandriva:linux:lib64magick5.5.7-devel, p-cpe:/a:mandriva:linux:lib64magick6.4.0, p-cpe:/a:mandriva:linux:lib64magick6.4.0-devel, p-cpe:/a:mandriva:linux:libmagick5.5.7, p-cpe:/a:mandriva:linux:libmagick5.5.7-devel, p-cpe:/a:mandriva:linux:libmagick6.4.0, p-cpe:/a:mandriva:linux:libmagick6.4.0-devel, p-cpe:/a:mandriva:linux:perl-magick, cpe:/o:mandrakesoft:mandrake_linux:10.0, cpe:/o:mandrakesoft:mandrake_linux:10.1, cpe:/o:mandrakesoft:mandrake_linux:9.2
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list
Patch Publication Date: 12/6/2004
Reference Information
CVE: CVE-2004-0981
MDKSA: 2004:143