The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Special Forums > Security > Security Advisories (RSS)
S-263: mapserver Vulnerabilities S-263: mapserver Vulnerabilities
Google UNIX.COM
Forums Portal Register Rules & FAQDonate Members List Arcade Search Today's Posts Mark Forums Read


Security Advisories (RSS) UNIX and Linux Security Advisories Via RSS News

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
S-281: SILC Vulnerabilities iBot Security Advisories (RSS) 0 04-28-2008 12:50 PM
S-254: Vulnerabilities in GDI iBot Security Advisories (RSS) 0 04-11-2008 02:10 PM
S-254: Vulnerabilities in GDI iBot Security Advisories (RSS) 0 04-09-2008 03:00 PM
USN-571-1: X.org vulnerabilities iBot Security Advisories (RSS) 0 01-17-2008 10:50 PM
S-100: GNU Tar Vulnerabilities iBot Security Advisories (RSS) 0 01-03-2008 03:20 PM

Reply
 
Submit Tools LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 04-10-2008
iBot's Avatar
RSS Robot Girl
  

Join Date: Sep 2000
Posts: 14,303
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit! Stumble this Post!Spurl this Post!
S-263: mapserver Vulnerabilities
The risk is LOW. Could lead to cross-site scripting or stack-based buffer overrun vulnerability, allowing a remote attacker to execute arbitrary code with the privileges of the CGI or httpd user. There are two vulnerabilities in mapserver, a development environment for spatial and mapping applications:1) lack on input sanitizing and output escaping in the CGI mapserver's template handling and error reporting routines; and2) missing bounds checking in mapserver's template handling.


More...
Reply With Quote
Google UNIX.COM
Forum Sponsor
Reply

« Debian: New pdns-recursor packages fix cache poisoning vulnerability | USN-600-1: rsync vulnerability »
Thread Tools
Display Modes
Linear Mode Linear Mode


The 50 most popular UNIX and Linux searches.
Google Search Cloud for The UNIX and Linux Forums
"inappropriate ioctl for device" 421 service not available, remote server has closed connection ^m autosys awk trim bash eval bash exec bash for loop boot: cannot open kernel/sparcv9/unix close_wait command copy/move folder in unix curses.h cut command in unix dead.letter find grep find null character in a unix file grep multiple lines grep or grep recursive grep unique inaddr_any inappropriate ioctl for device logrotate.conf lynx javascript mailx attachment mget mtime ping port remove first character from string in k shell replace space by comma , perl script scp recursive segmentation fault(coredump) sftp batch sftp script snoop unix stale nfs file handle syn_sent tar exclude unix unix .profile unix com unix forum unix forums unix interview questions unix mtime unix simulator unix.com vi tab size vi+substitute+end+of+line+character while loop within while loop shell script


All times are GMT -7. The time now is 12:06 PM.

The UNIX and Linux Forums RSS Feeds - Contact Us - The UNIX and Linux Forums - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited.
The UNIX and Linux Forums Content Copyright ©1993-2008 The CEP Blog All Rights Reserved -Ad Management by RedTyger Visit The Global Fact Book

Content Relevant URLs by vBSEO 3.2.0

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101