Select Page

imagemagick


How to block exploits via ImageMagick/GraphicsMagick popen() shell vulnerability in web hosting servers

How to block exploits via ImageMagick/GraphicsMagick popen() shell vulnerability in web hosting servers

On 29th May, we were alerted to a new ImageMagick vulnerability(NOT ImageTragick which we covered earlier) that allows arbitrary code execution on web hosting servers running Apache, Nginx or others as long as ImageMagick binary “convert” is accessible to web servers. We confirmed this vulnerability in several Linux web hosting servers including cPanel, Plesk and DirectAdmin. (more…)