Test ID:	1.3.6.1.4.1.25623.1.0.803818
Category:	Buffer overflow
Title:	ImageMagick < 6.7.5-9 Integer Overflow Vulnerability (Jun 2013) - Windows
Summary:	ImageMagick is prone to an integer overflow vulnerability.
Description:	Summary: ImageMagick is prone to an integer overflow vulnerability. Vulnerability Insight: Integer overflow error is due to an improper verification of executable file by profile.c Vulnerability Impact: Successful exploitation will allow an attacker to cause denial of service condition result in loss of availability for the application. Affected Software/OS: ImageMagick version 6.7.5-8 and earlier on Windows. Solution: Upgrade to ImageMagick version 6.7.5-9 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1186 47926 http://secunia.com/advisories/47926 48974 http://secunia.com/advisories/48974 49043 http://secunia.com/advisories/49043 49317 http://secunia.com/advisories/49317 51957 http://www.securityfocus.com/bid/51957 80555 http://www.osvdb.org/80555 DSA-2462 http://www.debian.org/security/2012/dsa-2462 USN-1435-1 http://ubuntu.com/usn/usn-1435-1 [oss-security] 20120319 Subject: CVE-2012-1185 / CVE-2012-1186 assignment notification - incomplete ImageMagick fixes for CVE-2012-0247 / CVE-2012-0248 http://www.openwall.com/lists/oss-security/2012/03/19/5 http://trac.imagemagick.org/changeset/6998/ImageMagick/branches/ImageMagick-6.7.5/magick/profile.c https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1186 imagemagick-syncimageprofiles-dos(76139) https://exchange.xforce.ibmcloud.com/vulnerabilities/76139 openSUSE-SU-2012:0692 http://lists.opensuse.org/opensuse-updates/2012-06/msg00001.html
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.