MapServer < 5.4.2 / 5.2.3 / 4.10.5 Buffer Overflow

The remote host is running MapServer, an open source Internet map server. The installed version reportedly contains an incomplete fix for the vulnerability referenced by CVE-2009-0840. An attacker may be able to exploit this issue to cause a denial of service condition or execute arbitrary code o...

MapServer <= 4.10.x Integer Overflow Vulnerability

MapServer is prone to a remote integer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:osgeo:mapserver";...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...

CVE-2009-2281

MapServer is vulnerable to a heap-based buffer overflow in readPostBody of cgiutil.c. The issue affects MapServer 4.x up to 4.10.4 and 5.x up to 5.4.1 (before 5.4.2), due to an integer overflow that can be triggered by a crafted Content-Length header or a large HTTP request. This results in arbit...

[SECURITY] [DSA 1914-1] New mapserver packages fix serveral vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA-1914-1 [email protected] http://www.debian.org/security/ Nico Golde October 22nd, 2009 http://www.debian.org/security/faq -...

DSA-1914-1 mapserver - serveral vulnerabilities

Bulletin has no description...

Fedora Core 10 FEDORA-2009-9243 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9243. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Fedora Core 11 FEDORA-2009-9230 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9230. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Fedora Core 11 FEDORA-2009-9230 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9230. OpenVAS Vulnerability Test $Id: fcore20099230.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9230 mapserver Authors: Thomas Reinke Copyright: Copyright c 200...

Fedora Core 10 FEDORA-2009-9243 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9243. OpenVAS Vulnerability Test $Id: fcore20099243.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9243 mapserver Authors: Thomas Reinke Copyright: Copyright c 200...

[SECURITY] Fedora 10 Update: mapserver-5.2.3-1.fc10

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

[SECURITY] Fedora 11 Update: mapserver-5.2.3-1.fc11

Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...

Fedora 11 : mapserver-5.2.3-1.fc11 (2009-9230)

Changelog is: Changing imagepath and imageurl no longer allowed via URL 1836 New fix for incomplete CVE-2009-0840 security fix made in 5.2.2 2943 Fixed seg fault if font not found with label ANGLE FOLLOW 2973 Note that Tenable Network Security has extracted the preceding description block directl...

Fedora 10 : mapserver-5.2.2-1.fc10 (2009-3357)

The releases contain fixes for issues discovered in an audit of the CGI by a 3rd party tickets 2939, 2941, 2942, 2943 and 2944. The issues are detailed at: http://trac.osgeo.org/mapserver/ticket/2939 http://trac.osgeo.org/mapserver/ticket/2941 http://trac.osgeo.org/mapserver/ticket/2942...

Fedora Core 9 FEDORA-2009-3383 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-3383. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Fedora Core 10 FEDORA-2009-3357 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-3357. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Fedora Core 10 FEDORA-2009-3357 (mapserver)

The remote host is missing an update to mapserver announced via advisory FEDORA-2009-3357. OpenVAS Vulnerability Test $Id: fcore20093357.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3357 mapserver Authors: Thomas Reinke Copyright: Copyright c 200...