Vulnerabilities

CVE-2012-1186

by Fred · 05/06/2012

Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and earlier allows remote attackers to cause a denial of service (infinite loop) via crafted IOP tag offsets in the IFD in an image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0248.

Date published : 2012-06-05

http://www.securityfocus.com/bid/51957

http://trac.imagemagick.org/changeset/6998/ImageMagick/branches/ImageMagick-6.7.5/magick/profile.c

Similar

Tags: Cybersecurity Alert