Unrated severityNVD Advisory· Published May 18, 2006· Updated Jun 16, 2026
CVE-2006-2440
CVE-2006-2440
Description
Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow attackers to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:imagemagick:imagemagick:6.0.6.2:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:imagemagick:imagemagick:6.0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.2.4:*:*:*:*:*:*:*
- (no CPE)range: =6.0.6.2
Patches
Vulnerability mechanics
References
8- bugs.debian.org/cgi-bin/bugreport.cginvdPatch
- patches.sgi.com/support/free/security/advisories/20070201-01-P.ascnvd
- secunia.com/advisories/21719nvd
- secunia.com/advisories/24186nvd
- secunia.com/advisories/24284nvd
- www.debian.org/security/2006/dsa-1168nvd
- www.redhat.com/support/errata/RHSA-2007-0015.htmlnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9481nvd
News mentions
0No linked articles in our index yet.