Executive Summary

Informations
NameCVE-2014-9849First vendor Publication2017-03-20
VendorCveLast vendor Modification2018-10-30

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9849

CWE : Common Weakness Enumeration

%idName
100 %CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Os4
Os1
Os1
Os1
Os1
Os2
Os2
Os1

Nessus® Vulnerability Scanner

DateDescription
2016-11-22Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3131-1.nasl - Type : ACT_GATHER_INFO
2016-08-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1782-1.nasl - Type : ACT_GATHER_INFO
2016-08-29Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-1784-1.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=1343509
MLIST http://www.openwall.com/lists/oss-security/2016/06/02/13
SUSE http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00018.html
UBUNTU http://www.ubuntu.com/usn/USN-3131-1

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2018-10-31 00:20:41
  • Multiple Updates
2018-01-26 12:05:55
  • Multiple Updates
2017-03-22 21:23:41
  • Multiple Updates
2017-03-20 21:23:22
  • First insertion