CVSS: 10.0EPSS: 2%CPEs: 42EXPL: 1CVE-2009-0840
https://notcve.org/view.php?id=CVE-2009-0840
31 Mar 2009 — Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header. Desbordamiento inferior de búfer basado en montículo en la función readPostBody en cgiutil.c en mapserv v4.x anterior a v4.10.4 y v5.x anterior a v5.2.2, permite a atacantes remotos tener un impacto desconocido a través de un valor negativo en la cabecera HTTP Content-Leng... • http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 42EXPL: 1CVE-2009-0841
https://notcve.org/view.php?id=CVE-2009-0841
31 Mar 2009 — Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a .. (dot dot) in the id parameter. Vulnerabilidad de salto de directorio en mapserv.c en mapserv en MapServer v4.x anterior a v4.10.4 y v5.x anterior a v5.2.2, cuando se ejecuta sobre Windows con Cygwin, permite a atacantes remotos crear fichero de modo arbitrario a traves de ..(punto punto) en el parametro ... • http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 42EXPL: 1CVE-2009-0842
https://notcve.org/view.php?id=CVE-2009-0842
31 Mar 2009 — mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to read arbitrary invalid .map files via a full pathname in the map parameter, which triggers the display of partial file contents within an error message, as demonstrated by a /tmp/sekrut.map symlink. mapserv en MapServer 4.x versiones anteriores a v4.10.4 y 5.x versiones anteriores a v5.2.2 permite a atacantes remotos leer ficheros .map inválidos de su elección a través de una ruta completa en el parámetro "map", lo cual d... • http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 1%CPEs: 42EXPL: 0CVE-2009-0843
https://notcve.org/view.php?id=CVE-2009-0843
31 Mar 2009 — The msLoadQuery function in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to determine the existence of arbitrary files via a full pathname in the queryfile parameter, which triggers different error messages depending on whether this pathname exists. La función msLoadQuery mapserv en MapServer v4.x y anteriores, v4.10.4 y v5.x anteriores v5.2.2, permite a atacantes remotos determinar la existencia de ficheros a través de un Path completo en el parámetro queryfile, lo qu... • http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html • CWE-20: Improper Input Validation •