oval:org.mitre.oval:def:7870

Definition Id: oval:org.mitre.oval:def:7870

Oval ID:	oval:org.mitre.oval:def:7870
Title:	DSA-1914 mapserver -- several vulnerabilities
Description:	Several vulnerabilities have been discovered in mapserver, a CGI-based web framework to publish spatial data and interactive mapping applications. The Common Vulnerabilities and Exposures project identifies the following problems: Missing input validation on a user supplied map queryfile name can be used by an attacker to check for the existence of a specific file by using the queryfile GET parameter and checking for differences in error messages. A lack of file type verification when parsing a map file can lead to partial disclosure of content from arbitrary files through parser error messages. Due to missing input validation when saving map files under certain conditions it is possible to perform directory traversal attacks and to create arbitrary files. NOTE: Unless the attacker is able to create directories in the image path or there is already a readable directory this doesn't affect installations on Linux as the fopen() syscall will fail in case a sub path is not readable. It was discovered that mapserver is vulnerable to a stack-based buffer overflow when processing certain GET parameters. An attacker can use this to execute arbitrary code on the server via crafted id parameters. An integer overflow leading to a heap-based buffer overflow when processing the Content-Length header of an HTTP request can be used by an attacker to execute arbitrary code via crafted POST requests containing negative Content-Length values. An integer overflow when processing HTTP requests can lead to a heap-based buffer overflow. An attacker can use this to execute arbitrary code either via crafted Content-Length values or large HTTP request. This is partly because of an incomplete fix for CVE-2009-0840.
Family:	unix	Class:	patch
Reference(s):	DSA-1914 CVE-2009-0843 CVE-2009-0842 CVE-2009-0841 CVE-2009-0840 CVE-2009-0839 CVE-2009-2281	Version:	3
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	mapserver
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section mapserver-doc is earlier than 5.0.3-3+lenny4 AND libmapscript-ruby is earlier than 5.0.3-3+lenny4 OR Architecture dependent section Supported architectures section Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is mipsel AND Installed architecture is arm AND Packages section mapserver-bin is earlier than 5.0.3-3+lenny4 AND python-mapscript is earlier than 5.0.3-3+lenny4 AND libmapscript-ruby1.8 is earlier than 5.0.3-3+lenny4 AND libmapscript-ruby1.9 is earlier than 5.0.3-3+lenny4 AND perl-mapscript is earlier than 5.0.3-3+lenny4 AND php5-mapscript is earlier than 5.0.3-3+lenny4 AND cgi-mapserver is earlier than 5.0.3-3+lenny4 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND mapserver-doc is earlier than 4.10.0-5.1+etch4 OR Architecture dependent section Supported architectures section Installed architecture is s390 AND Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is i386 AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is mipsel AND Installed architecture is arm AND Packages section mapserver-bin is earlier than 4.10.0-5.1+etch4 AND python-mapscript is earlier than 4.10.0-5.1+etch4 AND perl-mapscript is earlier than 4.10.0-5.1+etch4 AND php5-mapscript is earlier than 4.10.0-5.1+etch4 AND cgi-mapserver is earlier than 4.10.0-5.1+etch4 AND php4-mapscript is earlier than 4.10.0-5.1+etch4

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:7870

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:7870

Copyright Security-Database 2006-2025 - Powered by themself ;) in 0.0285s

Facebook rss twitter linkedin mail