CVE-2007-1797
Description
Integer overflows in ImageMagick before 6.3.3-5 allow remote code execution via crafted DCM or XWD images.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Integer overflows in ImageMagick before 6.3.3-5 allow remote code execution via crafted DCM or XWD images.
Vulnerability
Multiple integer overflow vulnerabilities exist in ImageMagick versions prior to 6.3.3-5. The flaws reside in the ReadDCMImage function when processing a crafted DCM image, and in the ReadXWDImage function when handling the colors or comments fields in a crafted XWD image. These overflows lead to heap-based buffer overflows, enabling arbitrary code execution [2][4].
Exploitation
An attacker can exploit these vulnerabilities by convincing a user to process a specially crafted DCM or XWD image file using an application that relies on ImageMagick. No authentication is required; the attack is remote and relies on user interaction (e.g., opening an image or visiting a malicious site that triggers processing) [4].
Impact
Successful exploitation allows an attacker to execute arbitrary code with the privileges of the user running the vulnerable application. This can lead to full compromise of the affected system, including data theft, installation of malware, or further lateral movement [2][4].
Mitigation
The vulnerabilities are fixed in ImageMagick version 6.3.3-5. Red Hat issued updates via RHSA-2008-0145 and RHSA-2008-0165 [2][3]. Ubuntu released updates as described in USN-481-1 [4]. Users should upgrade to the patched version or apply the relevant vendor updates. No workarounds are documented; upgrading is the recommended mitigation.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
33cpe:2.3:a:imagemagick:imagemagick:6.3.0.0:*:*:*:*:*:*:*+ 30 more
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.2.:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:imagemagick:imagemagick:6.3.3.4:*:*:*:*:*:*:*
- (no CPE)range: <6.3.3-5
- osv-coords2 versionspkg:rpm/opensuse/GraphicsMagick&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ImageMagick&distro=openSUSE%20Tumbleweed
< 1.3.36-1.7+ 1 more
- (no CPE)range: < 1.3.36-1.7
- (no CPE)range: < 7.1.0.8-1.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
27- labs.idefense.com/intelligence/vulnerabilities/display.phpnvdPatchVendor Advisory
- secunia.com/advisories/24721nvd
- secunia.com/advisories/24739nvd
- secunia.com/advisories/25072nvd
- secunia.com/advisories/25206nvd
- secunia.com/advisories/25992nvd
- secunia.com/advisories/26177nvd
- secunia.com/advisories/29786nvd
- secunia.com/advisories/29857nvd
- secunia.com/advisories/36260nvd
- security.gentoo.org/glsa/glsa-200705-13.xmlnvd
- www.debian.org/security/2009/dsa-1858nvd
- www.imagemagick.org/script/changelog.phpnvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2007_8_sr.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0145.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0165.htmlnvd
- www.securityfocus.com/bid/23252nvd
- www.securityfocus.com/bid/23347nvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/usn-481-1nvd
- www.vupen.com/english/advisories/2007/1200nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/33376nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/33377nvd
- issues.foresightlinux.org/browse/FL-222nvd
- issues.rpath.com/browse/RPL-1205nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9254nvd
News mentions
0No linked articles in our index yet.