4 matches found
Debian: Security Advisory (DSA-1914-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MapServer < 5.4.2 / 5.2.3 / 4.10.5 Buffer Overflow
The remote host is running MapServer, an open source Internet map server. The installed version reportedly contains an incomplete fix for the vulnerability referenced by CVE-2009-0840. An attacker may be able to exploit this issue to cause a denial of service condition or execute arbitrary code o...
CVE-2009-2281
MapServer is vulnerable to a heap-based buffer overflow in readPostBody of cgiutil.c. The issue affects MapServer 4.x up to 4.10.4 and 5.x up to 5.4.1 (before 5.4.2), due to an integer overflow that can be triggered by a crafted Content-Length header or a large HTTP request. This results in arbit...
CVE-2009-2281
Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5.4.2 allow remote attackers to execute arbitrary code via 1 a crafted Content-Length HTTP header or 2 a large HTTP request, related to an integer overflow tha...