|
|
CVE Reference: CVE-2007-4542 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-4542 |
|
|
Description: Multiple cross-site scripting (XSS) vulnerabilities in MapServer before 4.10.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the (1) processLine function in maptemplate.c and the (2) writeError function in mapserv.c in the mapserv CGI program. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA26561 Secunia Advisory: SA26718 Secunia Advisory: SA29688 MISC http://trac.osgeo.org/mapserver/attachment/ticket/2256/ms-bug-2256-4.8.patch http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=439346 FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1539 CONFIRM http://mapserver.gis.umn.edu/download/current/HISTORY.TXT/ http://trac.osgeo.org/mapserver/ticket/2256 BID 25582 |
|
| Return to the previous page. |
