Vulnerability identifier: #VU6836
Vulnerability risk: Low
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak in in the RLE decoder in ImageMagick before 7.0.5-2 . A remote attacker can create create a specially crafted image file and gain access to certain parts of memory and trigger application crash.
Update to version 7.0.5-2.
Vulnerable software versions
ImageMagick: 7.0.5-0 - 7.0.5-1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?