F5 Networks BIG-IP : GraphicsMagick vulnerability (K82747025)
Critical Nessus Plugin ID 92005
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionThe OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename. (CVE-2016-5118)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K82747025.