Critical Security Flaw in ImageMagick (imagetragick)

A vulnerability with a widely deployed image processing library was disclosed on the 5th of May 2016. Within an hour of the disclosure.

AppCheck was updated to detect the flaw.

 

From the original advisory:

“There are multiple vulnerabilities in ImageMagick, a package 
commonly used by web services to process images. One of the vulnerabilities
can lead to remote code execution (RCE) if you process user submitted images. 
The exploit for this vulnerability is being used in the wild.
A number of image processing plugins depend on the ImageMagick library, 
including, but not limited to, PHP’s imagick, Ruby’s rmagick and paperclip, and nodejs’s imagemagick.”

 

Full details of the flaw can be found at https://imagetragick.com/

Get started with Appcheck

No software to download or install.

Contact us or call us 0113 887 8380

Start your free trial
POPULAR
RECENT ARTICLES
RELATED
Services
Company
Resources
Keep in touch

AppCheck Ltd. is a company registered in England and Wales with company number 06888174

Start your free trial

Simply complete the form and we’ll send you all you need to activate AppCheck and undertake your FREE scan.
Your details
IP Addresses
URLs

Get in touch

Please enable JavaScript in your browser to complete this form.
Name