Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4629

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4629
Last Modified 07 Mar 2011 09:58:54
Published 30 Aug 2007 09:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4629

Summary

Buffer overflow in the processLine funtion in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name.

Vulnerable Systems

Application

  • University Of Minnesota Mapserver 4.10.2


References

CONFIRM - http://mapserver.gis.umn.edu/download/current/HISTORY.TXT/

VUPEN - ADV-2007-2974

CONFIRM - http://trac.osgeo.org/mapserver/ticket/2252

FEDORA - FEDORA-2007-2018

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=272081

BID - 25582

DEBIAN - DSA-1539

SREASON - 3082

SECUNIA - 29688

SECUNIA - 26718

SECUNIA - 26561


Last Updated: 27 May 2016 10:45:54