The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2016-05-05 11:59
Updated : 2023-02-12 15:20
NVD link : CVE-2016-3716
Mitre link : CVE-2016-3716
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_hpc_node
- enterprise_linux_server_aus
- enterprise_linux_workstation
- enterprise_linux_server
- enterprise_linux_server_supplementary_eus
- enterprise_linux_server_eus
- enterprise_linux_hpc_node_eus
canonical
- ubuntu_linux
imagemagick
- imagemagick