CVE-2007-4986

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.3.5-9

Description The issue is related to multiple integer overflows that can be triggered by crafted image files, including .dcm, .dib, .xbm, .xcf, and .xwd formats. This can lead to a heap-based buffer overflow, allowing context-dependent attackers to execute arbitrary code.

Recommendations For versions prior to 6.3.5-9, update to version 6.3.5-9 or later to resolve the issue. As a temporary workaround, consider restricting the processing of potentially malicious image files until the update is applied. Avoid using the vulnerable ImageMagick versions to handle untrusted image files.