JVN/CVE Demo: Nvdinfos

NVD

Id: 58822
Name: CVE-2006-0082
Description: Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and other versions, and GraphicsMagick, allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a numeric format string specifier such as %d in the file name, a variant of CVE-2005-0397, and as demonstrated using the convert program.
Reject
CVSS Version: 2
CVSS Score: 5.1
Severity: Medium
CVSS Base Score: 5.1
CVSS Impact Subscore: 6.4
CVSS Exploit Subscore: 4.9
CVSS Vector: (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Pub Date: 2016-12-20
Published: 2006-01-04
Modified Date: 2011-03-07
Seq: 2006-0082

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
302045	58822	CVE-2006-0082	20060301-01-U	View
302046	58822	CVE-2006-0082	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=345876	View
302047	58822	CVE-2006-0082	oval:org.mitre.oval:def:10717	View
302048	58822	CVE-2006-0082	RHSA-2006:0178	View
302049	58822	CVE-2006-0082	500	View
302050	58822	CVE-2006-0082	1015623	View
302051	58822	CVE-2006-0082	SSA:2006-045-03	View
302052	58822	CVE-2006-0082	231321	View
302053	58822	CVE-2006-0082	DSA-1213	View
302054	58822	CVE-2006-0082	GLSA-200602-06	View
302055	58822	CVE-2006-0082	GLSA-200602-13.xml	View
302056	58822	CVE-2006-0082	MDKSA-2006:024	View
302057	58822	CVE-2006-0082	SUSE-SR:2006:006	View
302058	58822	CVE-2006-0082	20061127 rPSA-2006-0218-1 ImageMagick	View
302059	58822	CVE-2006-0082	12717	View
302060	58822	CVE-2006-0082	USN-246-1	View
302061	58822	CVE-2006-0082	ADV-2008-0412	View
302062	58822	CVE-2006-0082	https://issues.rpath.com/browse/RPL-389	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
62552	JVNDB-2005-000754	ImageMagick の image.c におけるフォーマットストリングの脆弱性	ImageMagick の image.c にはSetImageInfo() 関数において、ファイル名中の %d のような数値フォーマット文字指定子の取り扱いに不備があり、フォーマットストリングの脆弱性が存在します。	CVE-2006-0082	16184	CVE-2006-0082	58822	5.1		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000754.html	2005-12-29	2008-02-12	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.48 MB
Controller render start	2.29 MB
View render complete	9.87 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.66
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	276.33
Event: Controller.beforeRender	4.42
» Processing toolbar data	4.34
Rendering View	356.61
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	346.89
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	6.17
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	1.86
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/58822
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/58822
Remote Port	24274
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	13.58.117.102
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	13.58.117.102
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	13.58.117.102
Unique Id	aCSfldxYmyXZNffgaIBqFgAAAVo
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	13.58.117.102
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	13.58.117.102
Redirect Unique Id	aCSfldxYmyXZNffgaIBqFgAAAVo
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	13.58.117.102
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	13.58.117.102
Redirect Redirect Unique Id	aCSfldxYmyXZNffgaIBqFgAAAVo
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1747230613.1208
Request Time	1747230613

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files