Lucene search
MitreCVELIST:CVE-2009-1176HistoryMar 31, 2009 - 6:00 p.m.
CVE-2009-1176
2009-03-3118:00:00
mitre
www.cve.org
mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 does not ensure that the string holding the id parameter ends in a ‘\0’ character, which allows remote attackers to conduct buffer-overflow attacks or have unspecified other impact via a long id parameter in a query action.
References
lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html
secunia.com/advisories/34603
www.positronsecurity.com/advisories/2009-000.html
www.securityfocus.com/archive/1/502271/100/0/threaded
www.securityfocus.com/bid/34306
www.securitytracker.com/id?1021952
www.redhat.com/archives/fedora-package-announce/2009-April/msg00147.html
www.redhat.com/archives/fedora-package-announce/2009-April/msg00170.html
Related
prion
prion
Buffer overflow
2009-03-31 18:24:00
nvd
nvd
CVE-2009-1176
2009-03-31 18:24:45
cve
cve
CVE-2009-1176
2009-03-31 18:24:45
ubuntucve
ubuntucve
CVE-2009-1176
2009-03-31 00:00:00
debiancve
debiancve
CVE-2009-1176
2009-03-31 18:24:45
nessus
nessus
MapServer < 5.2.2 / 4.10.4 Multiple Flaws
2009-04-02 00:00:00
Fedora 9 : mapserver-5.2.2-1.fc9 (2009-3383)
2009-04-07 00:00:00
Fedora 10 : mapserver-5.2.2-1.fc10 (2009-3357)
2009-04-23 00:00:00
openvas
openvas
Fedora Core 9 FEDORA-2009-3383 (mapserver)
2009-04-15 00:00:00
Fedora Core 10 FEDORA-2009-9243 (mapserver)
2009-09-09 00:00:00
Debian: Security Advisory (DSA-1914-1)
2009-10-27 00:00:00
redhatcve
redhatcve
fedora
fedora
[SECURITY] Fedora 11 Update: mapserver-5.2.3-1.fc11
2009-09-03 00:28:48
[SECURITY] Fedora 9 Update: mapserver-5.2.2-1.fc9
2009-04-06 20:33:40
[SECURITY] Fedora 10 Update: mapserver-5.2.2-1.fc10
2009-04-06 20:31:48
seebug
seebug
MapServer mapserv程序多个远程安全漏洞
2009-04-02 00:00:00