[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2009-1177

Date: (C)2009-03-31   (M)2015-12-16 


Multiple stack-based buffer overflows in maptemplate.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 have unknown impact and remote attack vectors.

CVSS Score: 10.0Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
SECTRACK-1021952
http://www.securityfocus.com/archive/1/archive/1/502271/100/0/threaded
BID-34306
SECUNIA-34603
FEDORA-2009-3357
FEDORA-2009-3383
http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html
http://trac.osgeo.org/mapserver/ticket/2944
http://www.positronsecurity.com/advisories/2009-000.html

CPE    39
cpe:/a:umn:mapserver:4.10:rc1
cpe:/a:umn:mapserver:5.2.0:beta2
cpe:/a:umn:mapserver:5.0.0:rc1
cpe:/a:umn:mapserver:5.2.0:beta3
...
CWE    1
CWE-119
OVAL    4
oval:org.secpod.oval:def:102441
oval:org.secpod.oval:def:102371
oval:org.secpod.oval:def:102414
oval:org.secpod.oval:def:101383
...

© 2013 SecPod Technologies