Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2006-3743 · VulnScope

CVE-2006-3743

EPSS 2.1%

Description

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.

How to fix CVE-2006-3743

To remediate CVE-2006-3743, upgrade the affected package to a fixed version below.

Debian/graphicsmagick—upgrade to 1.1.7-8 or later
Debian/imagemagick—upgrade to 7:6.2.4.5.dfsg1-0.10 or later

Is CVE-2006-3743 being exploited?

Low — EPSS is 2.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 1.1.7-8
from 0, < 7:6.2.4.5.dfsg1-0.10

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2006-3743

Metadata

Published: 8/25/2006
Modified: 4/28/2026

Also known as:

DEBIAN-CVE-2006-3743debian

Debian/graphicsmagick

Debian/imagemagick