Uncontrolled Resource Consumption Vulnerability in ImageMagick's Cineon Parsing Component

Uncontrolled Resource Consumption Vulnerability in ImageMagick's Cineon Parsing Component

CVE-2019-11470 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The cineon parsing component in ImageMagick 7.0.8-26 Q16 allows attackers to cause a denial-of-service (uncontrolled resource consumption) by crafting a Cineon image with an incorrect claimed image size. This occurs because ReadCINImage in coders/cin.c lacks a check for insufficient image data in a file.

Learn more about our Web Application Penetration Testing UK.