Detections
Analytics
ImageMagick < 7.1.2-10 Integer Overflow (GHSA-6hjr-v6g4-3fm8)
high Nessus Plugin ID 278315
Language:
Synopsis
The remote Windows host has an application installed that is affected by an integer overflow vulnerability.Description
The remote Windows host has a version of ImageMagick installed that is prior to 7.1.2-10. It is, therefore, affected by an integer overflow vulnerability.ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code reads width and height (16-bit values) from the file header and calculates image_size = 2 * width * height without checking for overflow. On 32-bit systems (or where size_t is 32-bit), this calculation can overflow if width and height are large (e.g., 65535), wrapping around to a small value. This results in a small heap allocation via AcquireQuantumMemory and later operations relying on the dimensions can trigger an out of bounds read.
This issue is fixed in version 7.1.2-10.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to ImageMagick version 7.1.2-10 or later.See Also
Plugin Details
Severity: High
ID: 278315
File Name: imagemagick_7_1_2_10.nasl
Version: 1.1
Type: local
Agent: windows
Family: Windows
Published: 12/11/2025
Updated: 12/11/2025
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: High
Base Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N
CVSS Score Source: CVE-2025-66628
CVSS v3
Risk Factor: High
Base Score: 7.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Information
CPE: cpe:/a:imagemagick:imagemagick
Required KB Items: installed_sw/ImageMagick
Patch Publication Date: 12/7/2025
Vulnerability Publication Date: 12/10/2025
Reference Information
CVE: CVE-2025-66628