Uninitialized Data Exposure in ImageMagick's ReadMATImage Function

CVE-2017-13143 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in coders/mat.c uses uninitialized data, which might allow remote attackers to obtain sensitive information from process memory.

Learn more about our Web Application Penetration Testing UK.