Memory Leak Vulnerability in ImageMagick's ReadXWDImage Function

Memory Leak Vulnerability in ImageMagick's ReadXWDImage Function

CVE-2017-11166 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.

Learn more about our Web Application Penetration Testing UK.