CVE-2003-0555 : ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (c

ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability.

Published 2003-08-18 04:00:00

Updated 2016-10-18 02:35:16

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute codeDenial of service

Products affected by CVE-2003-0555

Imagemagick » Imagemagick » Version: 5.4.3
cpe:2.3:a:imagemagick:imagemagick:5.4.3:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-0555

EPSS FAQ

0.95%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 75 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-0555

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0555

http://marc.info/?l=bugtraq&m=105820576111599&w=2

Jump to

Vulnerability Details : CVE-2003-0555

Products affected by CVE-2003-0555

Exploit prediction scoring system (EPSS) score for CVE-2003-0555

CVSS scores for CVE-2003-0555

References for CVE-2003-0555