CVE-2011-2704
7.9 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.15 Low
EPSS
Percentile
95.8%
Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors related to OGC filter encoding.
References
lists.osgeo.org/pipermail/mapserver-users/2011-July/069430.html
secunia.com/advisories/45257
secunia.com/advisories/45368
trac.osgeo.org/mapserver/ticket/3903
www.debian.org/security/2011/dsa-2285
www.openwall.com/lists/oss-security/2011/07/19/14
www.openwall.com/lists/oss-security/2011/07/20/15
www.securityfocus.com/bid/48720
bugzilla.redhat.com/show_bug.cgi?id=723293
exchange.xforce.ibmcloud.com/vulnerabilities/68719
Social References
More
Related
7.9 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.15 Low
EPSS
Percentile
95.8%