Signature Detail

HTTP: ImageMagick SGI File Handling Buffer Overflow

This signature detects attempts to exploit a known vulnerability in ImageMagick SGI decoder. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.

Extended Description

ImageMagick is prone to a remote heap buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. This issue allows attackers to execute arbitrary machine code in the context of applications that use the ImageMagick library. ImageMagick versions in the 6.x series, up to version 6.2.8, are vulnerable to this issue.

Affected Products

• Debian linux 3.1.0
• Debian linux 3.1.0 Alpha
• Debian linux 3.1.0 Amd64
• Debian linux 3.1.0 Arm
• Debian linux 3.1.0 Hppa
• Debian linux 3.1.0 Ia-32
• Debian linux 3.1.0 Ia-64
• Debian linux 3.1.0 M68k
• Debian linux 3.1.0 Mips
• Debian linux 3.1.0 Mipsel
• Debian linux 3.1.0 Ppc
• Debian linux 3.1.0 S/390
• Debian linux 3.1.0 Sparc
• Gentoo linux
• Imagemagick imagemagick 6.0.0
• Imagemagick imagemagick 6.0.1
• Imagemagick imagemagick 6.0.2
• Imagemagick imagemagick 6.0.2 .5
• Imagemagick imagemagick 6.0.3
• Imagemagick imagemagick 6.0.4
• Imagemagick imagemagick 6.0.5
• Imagemagick imagemagick 6.0.6
• Imagemagick imagemagick 6.0.7
• Imagemagick imagemagick 6.0.8
• Imagemagick imagemagick 6.1.0
• Imagemagick imagemagick 6.1.1
• Imagemagick imagemagick 6.1.2
• Imagemagick imagemagick 6.1.3
• Imagemagick imagemagick 6.1.4
• Imagemagick imagemagick 6.1.5
• Imagemagick imagemagick 6.1.6
• Imagemagick imagemagick 6.1.7
• Imagemagick imagemagick 6.1.8
• Imagemagick imagemagick 6.2.0
• Imagemagick imagemagick 6.2.0 .0.4
• Imagemagick imagemagick 6.2.0 .0.7
• Imagemagick imagemagick 6.2.1
• Imagemagick imagemagick 6.2.2
• Imagemagick imagemagick 6.2.3
• Imagemagick imagemagick 6.2.4
• Imagemagick imagemagick 6.2.4 .5
• Imagemagick imagemagick 6.2.5
• Imagemagick imagemagick 6.2.6
• Imagemagick imagemagick 6.2.7
• Imagemagick imagemagick 6.2.8
• Mandriva corporate_server 3.0.0
• Mandriva corporate_server 3.0.0 X86 64
• Mandriva linux_mandrake 2006.0.0
• Mandriva linux_mandrake 2006.0.0 X86 64
• Novell linux_desktop 9
• Red_hat advanced_workstation_for_the_itanium_processor 2.1.0
• Red_hat desktop 3.0.0
• Red_hat desktop 4.0.0
• Red_hat enterprise_linux_as 2.1
• Red_hat enterprise_linux_as 2.1 IA64
• Red_hat enterprise_linux_as 3
• Red_hat enterprise_linux_as 4
• Red_hat enterprise_linux_es 2.1
• Red_hat enterprise_linux_es 2.1 IA64
• Red_hat enterprise_linux_es 3
• Red_hat enterprise_linux_es 4
• Red_hat enterprise_linux_ws 2.1
• Red_hat enterprise_linux_ws 2.1 IA64
• Red_hat enterprise_linux_ws 3
• Red_hat enterprise_linux_ws 4
• Red_hat fedora Core5
• Red_hat fedora Core6
• Rpath rpath_linux 1
• Suse linux_desktop 1.0.0
• Suse linux_openexchange_server
• Suse linux_personal 10.0.0 OSS
• Suse linux_personal 10.1
• Suse linux_personal 9.2.0
• Suse linux_personal 9.2.0 X86 64
• Suse linux_personal 9.3.0
• Suse linux_personal 9.3.0 X86 64
• Suse linux_professional 10.0.0
• Suse linux_professional 10.0.0 OSS
• Suse linux_professional 10.1
• Suse linux_professional 9.2.0
• Suse linux_professional 9.2.0 X86 64
• Suse linux_professional 9.3.0
• Suse linux_professional 9.3.0 X86 64
• Suse suse_linux_enterprise_desktop 10
• Suse suse_linux_enterprise_sdk 10
• Suse suse_linux_enterprise_server_sdk 9
• Suse suse_linux_school_server_for_i386
• Suse suse_linux_standard_server 8.0.0
• Trustix secure_linux 2.2.0
• Trustix secure_linux 3.0.0
• Turbolinux appliance_server 2.0
• Turbolinux home
• Turbolinux multimedia
• Turbolinux personal
• Turbolinux turbolinux 10 F...
• Turbolinux turbolinux FUJI
• Turbolinux turbolinux_desktop 10.0.0
• Turbolinux turbolinux_server 10.0.0
• Turbolinux turbolinux_server 10.0.0 X64
• Turbolinux turbolinux_server 8.0.0
• Ubuntu ubuntu_linux 5.0.0 4 Amd64
• Ubuntu ubuntu_linux 5.0.0 4 I386
• Ubuntu ubuntu_linux 5.0.0 4 Powerpc
• Ubuntu ubuntu_linux 5.10.0 Amd64
• Ubuntu ubuntu_linux 5.10.0 I386
• Ubuntu ubuntu_linux 5.10.0 Powerpc
• Ubuntu ubuntu_linux 5.10.0 Sparc
• Ubuntu ubuntu_linux 6.06 LTS Amd64
• Ubuntu ubuntu_linux 6.06 LTS I386
• Ubuntu ubuntu_linux 6.06 LTS Powerpc
• Ubuntu ubuntu_linux 6.06 LTS Sparc

References

• BugTraq: 19507
• CVE: CVE-2006-4144