Summary
The remote host is missing an update to imagemagick announced via advisory DSA 593-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20593-1
Insight
A vulnerability has been reported for ImageMagick, a commonly used image manipulation library. Due to a boundary error within the EXIF parsing routine, a specially crafted graphic images could lead to the execution of arbitrary code.
For the stable distribution (woody) this problem has been fixed in version 5.4.4.5-1woody4.
For the unstable distribution (sid) this problem has been fixed in version 6.0.6.2-1.5.
We recommend that you upgrade your imagemagick packages.
Severity
Classification
-
CVE CVE-2004-0981 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Debian Security Advisory DSA 1070-1 (kernel-source-2.4.19,kernel-image-sparc-2.4,kernel-patch-2.4.19-mips)
- Debian Security Advisory DSA 098-1 (libgtop)
- Debian Security Advisory DSA 1018-2 (kernel-source-2.4.27)
- Debian Security Advisory DSA 1067-1 (kernel 2.4.16)
- Debian Security Advisory DSA 085-1 (nvi, nvi-m17n)