Rich's IT Blog

Sharing the joy of DevOps and Coffee

Day: May 4, 2016

Image Magick 0 Day Threat

1 Comment

Vulnerability Image Magick has a potential vulnerability noted by¬†http://www.openwall.com/lists/oss-security/2016/05/03/18   Basically in short the exploit allows commands to be run remotely when passed via curl or a URL. To see if you are vulnerable try running the following command on your server: convert ‘https://example.com”| ls “-la’ out.png If you successfully […]