CVE-2009-0841

2009-03-3118:24:45

Debian Security Bug Tracker

security-tracker.debian.org

0.025 Low

EPSS

Percentile

90.1%

JSON

Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a … (dot dot) in the id parameter.

OSVersionArchitecturePackageVersionFilename
Debian12allmapserver< 5.2.2-1mapserver_5.2.2-1_all.deb
Debian11allmapserver< 5.2.2-1mapserver_5.2.2-1_all.deb
Debian10allmapserver< 5.2.2-1mapserver_5.2.2-1_all.deb
Debian999allmapserver< 5.2.2-1mapserver_5.2.2-1_all.deb
Debian13allmapserver< 5.2.2-1mapserver_5.2.2-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	mapserver	< 5.2.2-1	mapserver_5.2.2-1_all.deb
Debian	11	all	mapserver	< 5.2.2-1	mapserver_5.2.2-1_all.deb
Debian	10	all	mapserver	< 5.2.2-1	mapserver_5.2.2-1_all.deb
Debian	999	all	mapserver	< 5.2.2-1	mapserver_5.2.2-1_all.deb
Debian	13	all	mapserver	< 5.2.2-1	mapserver_5.2.2-1_all.deb

0.025 Low

EPSS

Percentile

90.1%

JSON

Related for DEBIANCVE:CVE-2009-0841