CVE-2003-0455
imagemagick - insecure temporary file
EPSS 0.07%
Description
The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files.
How to fix CVE-2003-0455
To remediate CVE-2003-0455, upgrade the affected package to a fixed version below.
- Debian/imagemagick—upgrade to 4:5.5.7-1 or later
- Debian/imagemagick—upgrade to 4:5.4.4.5-1woody1 or later
Is CVE-2003-0455 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 4:5.5.7-1
- from 0, < 4:5.4.4.5-1woody1