Heap-based Buffer Over-read in WriteTIFFImage Function of ImageMagick 7.0.8-36 Q16

Heap-based Buffer Over-read in WriteTIFFImage Function of ImageMagick 7.0.8-36 Q16

CVE-2019-10650 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

In ImageMagick 7.0.8-36 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or information disclosure via a crafted image file.

Learn more about our Web Application Penetration Testing UK.