Vulnerability CVE-2007-4629

Vulnerability CVE-2007-4629

Published: 2007-08-30 Modified: 2012-02-12

Description:

	Topic	Author	Date
High	MapServer Buffer Overflow and Multiple Cross Site Scripting Vulnerabilities	vendor	01.09.2007

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
University of minnesota -> Mapserver

http://mapserver.gis.umn.edu/download/current/HISTORY.TXT/

https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00096.html

https://bugzilla.redhat.com/show_bug.cgi?id=272081

http://www.vupen.com/english/advisories/2007/2974

http://www.securityfocus.com/bid/25582

http://www.debian.org/security/2008/dsa-1539

http://trac.osgeo.org/mapserver/ticket/2252

http://securityreason.com/securityalert/3082