429 matches found
CVE-2011-2704
MapServer has a stack-based buffer overflow in its OGC filter encoding handling, affecting versions before 4.10.7 (and 5.x before 5.6.7). This allows remote code execution via OGC filter vectors. Remediation: upgrade to 4.10.7+ or 5.6.7+. The provided sources do not include explicit exploitation ...
CVE-2011-2703
Multiple SQL injection vulnerabilities in MapServer before 4.10.7, 5.x before 5.6.7, and 6.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via vectors related to 1 OGC filter encoding or 2 WMS time support...
CVE-2011-2703
Multiple SQL injection vulnerabilities in MapServer before 4.10.7, 5.x before 5.6.7, and 6.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via vectors related to 1 OGC filter encoding or 2 WMS time support...
CVE-2011-2704
Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors related to OGC filter encoding...
CVE-2011-2704
Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors related to OGC filter encoding...
CVE-2011-2703
CVE-2011-2703 describes multiple SQL injection vulnerabilities in MapServer prior to 4.10.7, 5.x prior to 5.6.7, and 6.x prior to 6.0.1. Attack vectors relate to OGC filter encoding and WMS time support, enabling remote attackers to execute arbitrary SQL commands. Impact is partial confidentialit...
Debian DSA-2285-1 : mapserver - several vulnerabilities
Several vulnerabilities have been discovered in mapserver, a CGI-based web framework to publish spatial data and interactive mapping applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-2703 Several instances of insufficient escaping of use...
[SECURITY] [DSA 2285-1] mapserver security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-2285-1 [email protected] http://www.debian.org/security/ Nico Golde July 26, 2011 http://www.debian.org/security/faq -...
DSA-2285-1 mapserver - several
Bulletin has no description...
[SECURITY] [DSA 2285-1] mapserver security update
-------------------------------------------------------------------------- Debian Security Advisory DSA-2285-1 [email protected] http://www.debian.org/security/ Nico Golde July 26, 2011 http://www.debian.org/security/faq -...
Fedora Update for mapserver FEDORA-2010-12266
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[SECURITY] Fedora 13 Update: mapserver-5.6.5-1.fc13
Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...
Fedora 13 : mapserver-5.6.5-1.fc13 (2010-12266)
Update to 5.6.5, for various fixes described at: http://trac.osgeo.org/mapserver/browser/tags/rel-5-6-5/m apserver/HISTORY.TXT Also fixes CVE-2010-2539, CVE-2010-2540, per bz 617301 and 617312. Note that Tenable Network Security has extracted the preceding description block directly from the...
Debian Security Advisory DSA 2078-1 (mapserver)
The remote host is missing an update to mapserver announced via advisory DSA 2078-1. OpenVAS Vulnerability Test $Id: deb20781.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2078-1 mapserver Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
[SECURITY] [DSA 2078-1] New mapserver packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-2078-1 [email protected] http://www.debian.org/security/ Nico Golde July 31nd, 2010 http://www.debian.org/security/faq -...
Debian DSA-2079-1 : mapserver - several vulnerabilities
Several vulnerabilities have been discovered in mapserver, a CGI-based web framework to publish spatial data and interactive mapping applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-2539 A stack-based buffer overflow in the msTmpFile...
CVE-2010-2539
Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of temporary files...
DEBIAN-CVE-2010-2539
Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of temporary files...
DEBIAN-CVE-2010-2540
mapserv.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 does not properly restrict the use of CGI command-line arguments that were intended for debugging, which allows remote attackers to have an unspecified impact via crafted arguments...
CVE-2010-2539
Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of temporary files...