Lucene search
HistoryJan 05, 2014 - 8:55 p.m.
CVE-2013-7262
cve-2013-7262
sql injection
mspostgislayersettimefilter
mapserver
nvd
vulnerability
wms-time service
remote attackers
arbitrary sql commands
8.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
69.0%
SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service is used, allows remote attackers to execute arbitrary SQL commands via a crafted string in a PostGIS TIME filter.
References
Social References
More
Related
seebug
seebug
MapServer PostGIS TIME Filter SQL注入漏洞
2014-01-07 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: mapserver-6.2.2-1.fc21
2015-03-19 18:39:47
[SECURITY] Fedora 20 Update: mapserver-6.2.2-1.fc20
2015-03-19 18:42:57
nessus
nessus
Fedora 20 : mapserver-6.2.2-1.fc20 (2014-17559)
2015-03-20 00:00:00
Fedora 21 : mapserver-6.2.2-1.fc21 (2014-17567)
2015-03-20 00:00:00
MapServer < 5.6.9 / 6.0.4 / 6.2.2 / 6.4.1 SQL Injection
2014-01-22 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0097)
2022-01-28 00:00:00
Fedora Update for mapserver FEDORA-2014-17559
2015-03-20 00:00:00
Fedora Update for mapserver FEDORA-2014-17567
2015-03-20 00:00:00
prion
prion
Sql injection
2014-01-05 20:55:00
mageia
mageia
Updated mapserver packages fix CVE-2013-7262 and packaging issues
2015-03-06 21:08:57
ubuntucve
ubuntucve
CVE-2013-7262
2014-01-05 00:00:00
cvelist
cvelist
CVE-2013-7262
2014-01-05 20:00:00
debiancve
debiancve
CVE-2013-7262
2014-01-05 20:55:00
8.1 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
69.0%
Related for CVE-2013-7262