MapServer Multiple Remote Vulnerabilities

high Nessus Plugin ID 26010

Synopsis

The remote web server contains CGI scripts that are prone to arbitrary remote command execution and cross-site scripting attacks.

Description

The remote host is running MapServer, an open source internet map server.

The installed version of MapServer is affected by multiple cross-site scripting vulnerabilities and to a buffer overflow vulnerability. To exploit those flaws an attacker needs to send specially crafted requests to the mapserv CGI.

By exploiting the buffer overflow vulnerability, an attacker would be able to execute code on the remote host with the privileges of the web server.

Solution

Upgrade to MapServer 4.10.3.

Plugin Details

Severity: High

ID: 26010

File Name: mapserver_multiple.nasl

Version: 1.20

Type: remote

Family: CGI abuses

Published: 9/10/2007

Updated: 6/1/2022

Configuration: Enable paranoid mode, Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: Settings/ParanoidReport, www/mapserver

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

CVE: CVE-2007-4542, CVE-2007-4629

BID: 25582

CWE: 79