Lucene search
RootSSV:61296HistoryJan 07, 2014 - 12:00 a.m.
MapServer PostGIS TIME Filter SQL注入漏洞
2014-01-0700:00:00
Root
www.seebug.org
19
EPSS
0.002
Percentile
52.5%
CVE ID:CVE-2013-7262
MapServer是用于创建交互式地图应用的多平台程序。
某些传递到PostGIS TIME filters的未明输入在用于SQL查询前未能正确过滤,攻击者可以通过注入任意SQL代码操纵SQL查询。
0
MapServer 6.x
厂商补丁:
MapServer
MapServer 6.4.1版本以修复此漏洞,建议用户下载使用:
http://www.mapserver.org/development/changelog/changelog-6-4.html#changes-from-6-4-0-to-6-4-1
Related
fedora
fedora
[SECURITY] Fedora 21 Update: mapserver-6.2.2-1.fc21
2015-03-19 18:39:47
[SECURITY] Fedora 20 Update: mapserver-6.2.2-1.fc20
2015-03-19 18:42:57
nessus
nessus
Fedora 20 : mapserver-6.2.2-1.fc20 (2014-17559)
2015-03-20 00:00:00
MapServer < 5.6.9 / 6.0.4 / 6.2.2 / 6.4.1 SQL Injection
2014-01-22 00:00:00
Fedora 21 : mapserver-6.2.2-1.fc21 (2014-17567)
2015-03-20 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0097)
2022-01-28 00:00:00
Fedora Update for mapserver FEDORA-2014-17567
2015-03-20 00:00:00
Fedora Update for mapserver FEDORA-2014-17559
2015-03-20 00:00:00
debiancve
debiancve
CVE-2013-7262
2014-01-05 20:55:04
cvelist
cvelist
CVE-2013-7262
2014-01-05 20:00:00
cve
cve
CVE-2013-7262
2014-01-05 20:55:04
ubuntucve
ubuntucve
CVE-2013-7262
2014-01-05 00:00:00
mageia
mageia
Updated mapserver packages fix CVE-2013-7262 and packaging issues
2015-03-06 21:08:57
prion
prion
Sql injection
2014-01-05 20:55:00
nvd
nvd
CVE-2013-7262
2014-01-05 20:55:04