CVE-2006-2440

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/05/2006
Last modified:
03/04/2025

Description

Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow attackers to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:imagemagick:imagemagick:6.0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:6.2.4:*:*:*:*:*:*:*