13 matches found
CVE-2009-0840
Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header...
Debian: Security Advisory (DSA-1914-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MapServer < 5.4.2 / 5.2.3 / 4.10.5 Buffer Overflow
The remote host is running MapServer, an open source Internet map server. The installed version reportedly contains an incomplete fix for the vulnerability referenced by CVE-2009-0840. An attacker may be able to exploit this issue to cause a denial of service condition or execute arbitrary code o...
Fedora Core 10 FEDORA-2009-9243 (mapserver)
The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9243. OpenVAS Vulnerability Test $Id: fcore20099243.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9243 mapserver Authors: Thomas Reinke Copyright: Copyright c 200...
Fedora Core 11 FEDORA-2009-9230 (mapserver)
The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9230. OpenVAS Vulnerability Test $Id: fcore20099230.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9230 mapserver Authors: Thomas Reinke Copyright: Copyright c 200...
Fedora Core 11 FEDORA-2009-9230 (mapserver)
The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9230. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 10 FEDORA-2009-9243 (mapserver)
The remote host is missing an update to mapserver announced via advisory FEDORA-2009-9243. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora 11 : mapserver-5.2.3-1.fc11 (2009-9230)
Changelog is: Changing imagepath and imageurl no longer allowed via URL 1836 New fix for incomplete CVE-2009-0840 security fix made in 5.2.2 2943 Fixed seg fault if font not found with label ANGLE FOLLOW 2973 Note that Tenable Network Security has extracted the preceding description block directl...
Fedora 10 : mapserver-5.2.3-1.fc10 (2009-9243)
Changelog is: Changing imagepath and imageurl no longer allowed via URL 1836 New fix for incomplete CVE-2009-0840 security fix made in 5.2.2 2943 Fixed seg fault if font not found with label ANGLE FOLLOW 2973 Note that Tenable Network Security has extracted the preceding description block directl...
MapServer < 4.10.4, 5.x < 5.2.2 Multiple Vulnerabilities
MapServer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:osgeo:mapserver"; ifdescription...
CVE-2009-0840
Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header...
CVE-2009-0840
Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header...
CVE-2009-0840
CVE-2009-0840 affects MapServer’s mapserv CGI: a heap-based buffer overflow can be triggered by a crafted Content-Length header, enabling remote code execution. Impacted are MapServer 4.x up to 4.10.4 and 5.x up to 5.2.2. Debian/OSS advisories note an incomplete fix also affecting CVE-2009-2281 a...