MapServer Multiple Remote Vulnerabilities
BID:25582
Info
MapServer Multiple Remote Vulnerabilities
| Bugtraq ID: | 25582 |
| Class: | Unknown |
| CVE: |
CVE-2007-4542 CVE-2007-4629 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 06 2007 12:00AM |
| Updated: | Apr 04 2008 11:29PM |
| Credit: | Chris Schmidt.and dmorissette are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Regents of the University of Minnesota MapServer 4.10.2 Redhat Fedora Core7 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 |
| Not Vulnerable: |
Regents of the University of Minnesota MapServer 4.10.3 |
Discussion
MapServer Multiple Remote Vulnerabilities
MapServer is prone to multiple remote vulnerabilities, including a cross-site scripting issue and a buffer-overflow issue.
An attacker can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code within the context of the affected application, or crash the application, denying service to legitimate users.
Versions prior to MapServer 4.10.3 are vulnerable.
MapServer is prone to multiple remote vulnerabilities, including a cross-site scripting issue and a buffer-overflow issue.
An attacker can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code within the context of the affected application, or crash the application, denying service to legitimate users.
Versions prior to MapServer 4.10.3 are vulnerable.
Exploit / POC
MapServer Multiple Remote Vulnerabilities
An attacker can exploit the cross-site scripting issues by enticing an unsuspecting user to follow a malicious URI.
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
An attacker can exploit the cross-site scripting issues by enticing an unsuspecting user to follow a malicious URI.
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
MapServer Multiple Remote Vulnerabilities
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Regents of the University of Minnesota MapServer 4.10.2
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Regents of the University of Minnesota MapServer 4.10.2
-
Regents of the University of Minnesota mapserver-4.10.3.tar.gz
http://download.osgeo.org/mapserver/mapserver-4.10.3.tar.gz
References
MapServer Multiple Remote Vulnerabilities
References:
References:
- MapServer Homepage (Regents of the University of Minneso)
- XSS vulnerabilities in mapserv CGI (dmorissette)
- Possible buffer overflow in template processing (dmorissette)