Denial of Service Vulnerability in ImageMagick's ReadOneJNGImage Function

Denial of Service Vulnerability in ImageMagick's ReadOneJNGImage Function

CVE-2017-11505 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file.

Learn more about our Web Application Penetration Testing UK.