UMN : Security vulnerabilities, CVEs Information leak published in 2009

CVE-2009-0842

mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to read arbitrary invalid .map files via a full pathname in the map parameter, which triggers the display of partial file contents within an error message, as demonstrated by a /tmp/sekrut.map symlink.

Max CVSS

4.3

EPSS Score

1.09%

Published

2009-03-31

Updated

2021-06-07

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

UMN : Security Vulnerabilities, CVEs, Published In 2009 (Information Leak)

CVE-2009-0842