Описание
Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a .. (dot dot) in the id parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 5.4.2-1 |
| gutsy | ignored | end of life, was needs-triage |
| hardy | released | 5.0.0-3ubuntu0.1 |
| intrepid | released | 5.0.3-2ubuntu0.1 |
| jaunty | released | 5.0.3-3ubuntu0.1 |
| karmic | not-affected | 5.4.2-1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
10 Critical
CVSS2
Связанные уязвимости
Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a .. (dot dot) in the id parameter.
Directory traversal vulnerability in mapserv.c in mapserv in MapServer ...
Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with Cygwin, allows remote attackers to create arbitrary files via a .. (dot dot) in the id parameter.
10 Critical
CVSS2