![]() The vulnerability did not affect ImageMagick distributions that included a properly configured security policy. The security flaw was due to ImageMagick calling backend tools without first properly checking to ensure path and file names are free of improper shell commands. Security experts including CloudFlare researchers observed actual use of the vulnerability in active hacking attempts. In May 2016, it was reported that ImageMagick had a vulnerability through which an attacker can execute arbitrary code on servers that use the application to edit user-uploaded images. ![]() It was freely released in 1990 when DuPont agreed to transfer copyright to ImageMagick Studio LLC, still currently the project maintainer organization. ImageMagick was created in 1987 by John Cristy when working at DuPont, to convert 24-bit images (16 million colors) to 8-bit images (256 colors), so they could be displayed on most screens at the time.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |