Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1176HistoryMar 31, 2009 - 6:24 p.m.
CVE-2009-1176
2009-03-3118:24:45
Debian Security Bug Tracker
security-tracker.debian.org
8
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.7%
mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 does not ensure that the string holding the id parameter ends in a ‘\0’ character, which allows remote attackers to conduct buffer-overflow attacks or have unspecified other impact via a long id parameter in a query action.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mapserver | < 5.2.2-1 | mapserver_5.2.2-1_all.deb |
| Debian | 11 | all | mapserver | < 5.2.2-1 | mapserver_5.2.2-1_all.deb |
| Debian | 10 | all | mapserver | < 5.2.2-1 | mapserver_5.2.2-1_all.deb |
| Debian | 999 | all | mapserver | < 5.2.2-1 | mapserver_5.2.2-1_all.deb |
| Debian | 13 | all | mapserver | < 5.2.2-1 | mapserver_5.2.2-1_all.deb |
Related
prion
prion
Buffer overflow
2009-03-31 18:24:00
cvelist
cvelist
CVE-2009-1176
2009-03-31 18:00:00
nvd
nvd
CVE-2009-1176
2009-03-31 18:24:45
cve
cve
CVE-2009-1176
2009-03-31 18:24:45
ubuntucve
ubuntucve
CVE-2009-1176
2009-03-31 00:00:00
nessus
nessus
MapServer < 5.2.2 / 4.10.4 Multiple Flaws
2009-04-02 00:00:00
Fedora 9 : mapserver-5.2.2-1.fc9 (2009-3383)
2009-04-07 00:00:00
Fedora 10 : mapserver-5.2.2-1.fc10 (2009-3357)
2009-04-23 00:00:00
openvas
openvas
Fedora Core 9 FEDORA-2009-3383 (mapserver)
2009-04-15 00:00:00
Fedora Core 10 FEDORA-2009-9243 (mapserver)
2009-09-09 00:00:00
Debian: Security Advisory (DSA-1914-1)
2009-10-27 00:00:00
redhatcve
redhatcve
fedora
fedora
[SECURITY] Fedora 11 Update: mapserver-5.2.3-1.fc11
2009-09-03 00:28:48
[SECURITY] Fedora 9 Update: mapserver-5.2.2-1.fc9
2009-04-06 20:33:40
[SECURITY] Fedora 10 Update: mapserver-5.2.2-1.fc10
2009-04-06 20:31:48
seebug
seebug
MapServer mapserv程序多个远程安全漏洞
2009-04-02 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.7%
Related for DEBIANCVE:CVE-2009-1176