Heap-based Buffer Overflow
CVE-2014-9823
Summary
Heap-based buffer overflow in ImageMagick 7.x before 7.0.1-0 and ImageMagick 6.x before 6.9.4-0 allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.
- LOW
- LOCAL
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- HIGH
- HIGH
CWE-122 - Heap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
References
Advisory Timeline
- Published