MapServer Multiple Remote Vulnerabilities

High Nessus Plugin ID 26010

Synopsis

The remote web server contains CGI scripts that are prone to arbitrary remote command execution and cross-site scripting attacks.

Description

The remote host is running MapServer, an open source internet map server.

The installed version of MapServer is affected by multiple cross-site scripting vulnerabilities and to a buffer overflow vulnerability. To exploit those flaws an attacker needs to send specially crafted requests to the mapserv CGI.

By exploiting the buffer overflow vulnerability, an attacker would be able to execute code on the remote host with the privileges of the web server.

Solution

Upgrade to MapServer 4.10.3.

Plugin Details

Severity: High

ID: 26010

File Name: mapserver_multiple.nasl

Version: 1.18

Type: remote

Family: CGI abuses

Published: 2007/09/10

Modified: 2018/06/13

Dependencies: 47860

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: www/mapserver, Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

CVE: CVE-2007-4542, CVE-2007-4629

BID: 25582

CWE: 79