Multiple stack-based buffer overflows in maptemplate.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 have unknown impact and remote attack vectors.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:01
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html - Patch | |
References | () http://secunia.com/advisories/34603 - | |
References | () http://trac.osgeo.org/mapserver/ticket/2944 - | |
References | () http://www.positronsecurity.com/advisories/2009-000.html - Exploit | |
References | () http://www.securityfocus.com/archive/1/502271/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/34306 - | |
References | () http://www.securitytracker.com/id?1021952 - | |
References | () https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00147.html - | |
References | () https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00170.html - |
01 Jun 2021, 13:57
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:umn:mapserver:5.2.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta4:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.2:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta4:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:rc2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta6:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta5:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.3:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta2:*:*:*:*:*:* |
cpe:2.3:a:osgeo:mapserver:4.10.2:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta6:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta4:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:rc2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta4:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta5:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.3:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta2:*:*:*:*:*:* |
28 May 2021, 18:38
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:osgeo:mapserver:4.2.0:beta1:*:*:*:*:*:* |
Information
Published : 2009-03-31 18:24
Updated : 2024-11-21 01:01
NVD link : CVE-2009-1177
Mitre link : CVE-2009-1177
CVE.ORG link : CVE-2009-1177
JSON object : View
Products Affected
umn
- mapserver
osgeo
- mapserver
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer