Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-2975Double Free in Mapserver

CWE-3996 documents6 sources
Severity
6.8MEDIUMNVD
EPSS
2.5%
top 14.70%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Osgeo MapserverDebian MapserverUMN Mapserver
Timeline
PublishedAug 1
Latest updateMay 13

Description

Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact via crafted mapfile data.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

debiandebian/mapserver< mapserver 6.0.1-1 (bookworm)
Debianosgeo/mapserver< 6.0.1-1+3
NVDosgeo/mapserver6.0.0+19
NVDumn/mapserver8 versions+7

Patches

Patch: lists.osgeo.orgPatch: trac.osgeo.orgPatch: lists.osgeo.org

🔴Vulnerability Details

2
GHSA
GHSA-4j4j-v2rr-2rgh: Double free vulnerability in the msAddImageSymbol function in mapsymbol2022-05-13
OSV
CVE-2011-2975: Double free vulnerability in the msAddImageSymbol function in mapsymbol2011-08-01

💥Exploits & PoCs

1
Exploit-DB
MapServer 6.0 - '.Map' File Double-Free Remote Denial of Service2011-08-30

📋Vendor Advisories

1
Debian
CVE-2011-2975: mapserver - Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in Map...2011

💬Community

1
Bugzilla
CVE-2011-2703 CVE-2011-2704 CVE-2011-2975 MapServer (v6.0.1, v5.6.7 and v4.10.7): Multiple SQL injections and one (stack-based) buffer overflow flaw2011-07-19
CVE-2011-2975 — Double Free in Debian Mapserver | cvebase