ImageMagick.ReadXBMImage.Information.Disclosure
Description
This indicates an attack against an Information Disclosure vulnerability in ImageMagick.
The vulnerability is caused by improper validation of image files. A remote attacker may be able to exploit this to gain access to sensitive information on the affected system, via a crafted file.
Affected Products
ImageMagick Studio ImageMagick before 7.0.8-9
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://usn.ubuntu.com/3785-1/
https://github.com/ImageMagick/ImageMagick/commit/216d117f05bff87b9dc4db55a1b1fadb38bcb786
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-02-15 | 14.554 | Default_action:pass:drop |
2019-02-07 | 14.544 | Sig Added |
2018-12-21 | 13.513 |