Debian: DSA-1914-1 Critical: Mapserver Remote Code Execution
debian
October 22, 2009
Several vulnerabilities have been discovered in mapserver, a CGI-based web framework to publish spatial data and interactive mapping applications
Topics Covered
Summary
Several vulnerabilities have been discovered in mapserver, a CGI-based
web framework to publish spatial data and interactive mapping applications.
The Common Vulnerabilities and Exposures project identifies the following
problems:
CVE-2009-0843
Missing input validation on a user supplied map queryfile name can be
used by an attacker to check for the existence of a specific file by
using the queryfile GET parameter and checking for differences in error
messages.
CVE-2009-0842
A lack of file type verification when parsing a map file can lead to
partial disclosure of content from arbitrary files through parser error
messages.
CVE-2009-0841
Due to missing input validation when saving map files under certain
conditions it is possible to perform directory traversal attacks and
to create arbitrary files.
NOTE: Unless the attacker is able to create directories in the image
path or there is already a readable directory this doesn't affect
installations on Linux as the fopen() syscall ...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: mapserver
CVE ID: CVE-2009-0843 CVE-2009-0842 CVE-2009-0841 CVE-2009-0840
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!