Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of temporary files.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
07 Jun 2021, 15:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:umn:mapserver:*:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:rc2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:*:*:*:*:*:*:* |
cpe:2.3:a:osgeo:mapserver:*:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:rc2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:*:*:*:*:*:*:* |
01 Jun 2021, 13:59
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:umn:mapserver:4.10.4:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta4:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.2:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta4:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.6.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:rc2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.6.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.2:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta6:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.6.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta5:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.8:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta3:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:beta4:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:rc2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.3:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:4.10.1:*:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.2.0:beta1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:rc1:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.0.0:beta2:*:*:*:*:*:* cpe:2.3:a:umn:mapserver:5.4.0:rc1:*:*:*:*:*:* |
cpe:2.3:a:osgeo:mapserver:4.10.2:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:rc2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.6.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta6:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.2:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:beta4:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta4:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:rc2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.6.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta4:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.8.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta5:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.3:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta3:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:rc1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.1:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.0.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.2.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:*:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.6.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.0:beta2:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:5.4.0:beta1:*:*:*:*:*:* cpe:2.3:a:osgeo:mapserver:4.10.4:*:*:*:*:*:*:* |
28 May 2021, 18:38
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:osgeo:mapserver:4.2.0:beta1:*:*:*:*:*:* |
Information
Published : 2010-08-02 22:00
Updated : 2024-02-04 17:54
NVD link : CVE-2010-2539
Mitre link : CVE-2010-2539
CVE.ORG link : CVE-2010-2539
JSON object : View
Products Affected
osgeo
- mapserver
umn
- mapserver
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer