cbcvebase.
CVE-2007-4629
published 2007-08-31

CVE-2007-4629: Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute…

PriorityP430high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
3.49%
87.7th percentile
Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianmapserver< mapserver 4.10.3-1 (bookworm)mapserver 4.10.3-1 (bookworm)
osgeomapserver>= 0 < 4.10.3-14.10.3-1
osgeomapserver>= 0 < 4.10.3-14.10.3-1
osgeomapserver>= 0 < 4.10.3-14.10.3-1
osgeomapserver>= 0 < 4.10.3-14.10.3-1
university_of_minnesotamapserver<= 4.10.2

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.