CVE-2004-0827
imagemagick - buffer overflows
EPSS 3.7%
Description
Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.
How to fix CVE-2004-0827
To remediate CVE-2004-0827, upgrade the affected package to a fixed version below.
- Debian/imagemagick—upgrade to 5:6.0.7.1-1 or later
- Debian/imagemagick—upgrade to 5.4.4.5-1woody3 or later
Is CVE-2004-0827 being exploited?
Low — EPSS is 3.7%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 5:6.0.7.1-1
- from 0, < 5.4.4.5-1woody3