Denial of Service Vulnerability in ImageMagick's ReadHDRImage Function

Denial of Service Vulnerability in ImageMagick's ReadHDRImage Function

CVE-2015-8900 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file.

Learn more about our Web Application Penetration Testing UK.