vulnerability

Huawei EulerOS: CVE-2016-5239: ImageMagick security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Mar 15, 2017	Nov 30, 2017	Aug 13, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Mar 15, 2017

Added

Nov 30, 2017

Modified

Aug 13, 2025

Description

It was discovered that ImageMagick did not properly sanitize certain input before passing it to the gnuplot delegate functionality. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick utilities, would lead to arbitrary execution of shell commands with the privileges of the user running the application.

Solutions

huawei-euleros-2_0_sp1-upgrade-imagemagickhuawei-euleros-2_0_sp1-upgrade-imagemagick-c++huawei-euleros-2_0_sp1-upgrade-imagemagick-perl

References

CVE-2016-5239
https://attackerkb.com/topics/CVE-2016-5239
CWE-284
EULEROS-EulerOS-SA-2016-1029

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today