CVE-2005-4601
EPSS 11.9%imagemagick - missing shell meta sanitising
Published: 12/31/2005Modified: 4/28/2026
Description
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command.
Affected packages (3)
- Debian/graphicsmagickfrom 0, < 1.1.7-1
- Debian/imagemagickfrom 0, < 6:6.2.4.5-0.6
- Debian/imagemagickfrom 0, < 4:5.4.4.5-1woody8