Main Vulnerability Database Exploits ID:10705 - Exploit for Resource management error in ImageMagick - CVE-2022-44267

ID:10705 - Exploit for Resource management error in ImageMagick - CVE-2022-44267

Published: October 25, 2024

Vulnerability identifier: #VU72079

Vulnerability risk: Low

CVE-ID: CVE-2022-44267

CWE-ID: CWE-399

Exploitation vector: Remote access

Vulnerable software:
ImageMagick

Link to public exploit:

https://www.exploit-db.com/exploits/51256/

Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources when performing operations on crafted PNG images. A remote attacker can pass specially crafted PNG image to the application and force the application to wait indefinitely for the stdin input, consuming system resources.

Remediation

Install updates from vendor's website.

ID:10705 - Exploit for Resource management error in ImageMagick - CVE-2022-44267

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human