Lucene search

K

MitreCVELIST:CVE-2007-4542

HistoryAug 27, 2007 - 9:00 p.m.

CVE-2007-4542

2007-08-2721:00:00

mitre

www.cve.org

5.5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

Multiple cross-site scripting (XSS) vulnerabilities in MapServer before 4.10.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the (1) processLine function in maptemplate.c and the (2) writeError function in mapserv.c in the mapserv CGI program.

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=439346

mapserver.gis.umn.edu/download/current/HISTORY.TXT/

secunia.com/advisories/26561

secunia.com/advisories/26718

secunia.com/advisories/29688

trac.osgeo.org/mapserver/attachment/ticket/2256/ms-bug-2256-4.8.patch

trac.osgeo.org/mapserver/ticket/2256

www.debian.org/security/2008/dsa-1539

www.securityfocus.com/bid/25582

www.vupen.com/english/advisories/2007/2974

www.redhat.com/archives/fedora-package-announce/2007-September/msg00096.html

5.5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

Related for CVELIST:CVE-2007-4542

ubuntucve1 nvd1 prion1 debiancve1 cve1 openvas4 fedora1 osv1 nessus3 debian1 seebug1