Vulnerability Description
The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Imagemagick | Libmagick Library | 5.5 |
References
- http://marc.info/?l=bugtraq&m=105786393628728&w=2
- http://www.debian.org/security/2003/dsa-331PatchVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2004-494.html
- http://marc.info/?l=bugtraq&m=105786393628728&w=2
- http://www.debian.org/security/2003/dsa-331PatchVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2004-494.html
FAQ
What is CVE-2003-0455?
CVE-2003-0455 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files.
How severe is CVE-2003-0455?
CVE-2003-0455 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0455?
Check the references section above for vendor advisories and patch information. Affected products include: Imagemagick Libmagick Library.