What is the severity of CVE-2009-1177?

The severity of CVE-2009-1177 is classified as high due to multiple stack-based buffer overflows that can potentially allow remote attackers to exploit the vulnerability.

How do I fix CVE-2009-1177?

To fix CVE-2009-1177, update MapServer to version 4.10.4 or higher, or 5.2.2 or higher.

What software versions are affected by CVE-2009-1177?

CVE-2009-1177 affects MapServer versions prior to 4.10.4 and 5.2.2, including various beta and release candidates.

Can CVE-2009-1177 be exploited remotely?

Yes, CVE-2009-1177 can be exploited through remote attack vectors due to the nature of the buffer overflow vulnerabilities.

What impact does CVE-2009-1177 have on systems?

The impact of CVE-2009-1177 is currently unknown but includes the potential for arbitrary code execution or denial of service on affected systems.

Vulnerability/
CVE-2009-1177

critical

CWE

119

31/3/2009

7/8/2024

CVE-2009-1177: Buffer Overflow

First published: Tue Mar 31 2009(Updated: )

Multiple stack-based buffer overflows in maptemplate.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 have unknown impact and remote attack vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
MapServer	=4.2.0-beta1
MapServer	=4.4.0
MapServer	=4.4.0-beta1
MapServer	=4.4.0-beta2
MapServer	=4.4.0-beta3
MapServer	=4.6.0
MapServer	=4.6.0-beta1
MapServer	=4.6.0-beta2
MapServer	=4.6.0-beta3
MapServer	=4.6.0-rc1
MapServer	=4.8.0-beta1
MapServer	=4.8.0-beta2
MapServer	=4.8.0-beta3
MapServer	=4.8.0-rc1
MapServer	=4.8.0-rc2
MapServer	=4.10.0
MapServer	=4.10.0-beta1
MapServer	=4.10.0-beta2
MapServer	=4.10.0-beta3
MapServer	=4.10.0-rc1
MapServer	=4.10.1
MapServer	=4.10.2
MapServer	=4.10.3
MapServer	=5.0.0
MapServer	=5.0.0-beta1
MapServer	=5.0.0-beta2
MapServer	=5.0.0-beta3
MapServer	=5.0.0-beta4
MapServer	=5.0.0-beta5
MapServer	=5.0.0-beta6
MapServer	=5.0.0-rc1
MapServer	=5.0.0-rc2
MapServer	=5.2.0
MapServer	=5.2.0-beta1
MapServer	=5.2.0-beta2
MapServer	=5.2.0-beta3
MapServer	=5.2.0-beta4
MapServer	=5.2.0-rc1
MapServer	=5.2.1
MapServer	=4.0
MapServer	=4.0-beta1
MapServer	=4.0-beta2

Remedy

http://lists.osgeo.org/pipermail/mapserver-users/2009-March/060600.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1177?
The severity of CVE-2009-1177 is classified as high due to multiple stack-based buffer overflows that can potentially allow remote attackers to exploit the vulnerability.
How do I fix CVE-2009-1177?
To fix CVE-2009-1177, update MapServer to version 4.10.4 or higher, or 5.2.2 or higher.
What software versions are affected by CVE-2009-1177?
CVE-2009-1177 affects MapServer versions prior to 4.10.4 and 5.2.2, including various beta and release candidates.
Can CVE-2009-1177 be exploited remotely?
Yes, CVE-2009-1177 can be exploited through remote attack vectors due to the nature of the buffer overflow vulnerabilities.
What impact does CVE-2009-1177 have on systems?
The impact of CVE-2009-1177 is currently unknown but includes the potential for arbitrary code execution or denial of service on affected systems.

agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/references
agent/author
agent/last-modified-date
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/weakness
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/osgeo
canonical/mapserver
version/mapserver/4.2.0-beta1
version/mapserver/4.4.0
version/mapserver/4.4.0-beta1
version/mapserver/4.4.0-beta2
version/mapserver/4.4.0-beta3
version/mapserver/4.6.0
version/mapserver/4.6.0-beta1
version/mapserver/4.6.0-beta2
version/mapserver/4.6.0-beta3
version/mapserver/4.6.0-rc1
version/mapserver/4.8.0-beta1
version/mapserver/4.8.0-beta2
version/mapserver/4.8.0-beta3
version/mapserver/4.8.0-rc1
version/mapserver/4.8.0-rc2
version/mapserver/4.10.0
version/mapserver/4.10.0-beta1
version/mapserver/4.10.0-beta2
version/mapserver/4.10.0-beta3
version/mapserver/4.10.0-rc1
version/mapserver/4.10.1
version/mapserver/4.10.2
version/mapserver/4.10.3
version/mapserver/5.0.0
version/mapserver/5.0.0-beta1
version/mapserver/5.0.0-beta2
version/mapserver/5.0.0-beta3
version/mapserver/5.0.0-beta4
version/mapserver/5.0.0-beta5
version/mapserver/5.0.0-beta6
version/mapserver/5.0.0-rc1
version/mapserver/5.0.0-rc2
version/mapserver/5.2.0
version/mapserver/5.2.0-beta1
version/mapserver/5.2.0-beta2
version/mapserver/5.2.0-beta3
version/mapserver/5.2.0-beta4
version/mapserver/5.2.0-rc1
version/mapserver/5.2.1
vendor/umn
version/mapserver/4.0
version/mapserver/4.0-beta1
version/mapserver/4.0-beta2

Frequently Asked Questions

What is the severity of CVE-2009-1177?
The severity of CVE-2009-1177 is classified as high due to multiple stack-based buffer overflows that can potentially allow remote attackers to exploit the vulnerability.
How do I fix CVE-2009-1177?
To fix CVE-2009-1177, update MapServer to version 4.10.4 or higher, or 5.2.2 or higher.
What software versions are affected by CVE-2009-1177?
CVE-2009-1177 affects MapServer versions prior to 4.10.4 and 5.2.2, including various beta and release candidates.
Can CVE-2009-1177 be exploited remotely?
Yes, CVE-2009-1177 can be exploited through remote attack vectors due to the nature of the buffer overflow vulnerabilities.
What impact does CVE-2009-1177 have on systems?
The impact of CVE-2009-1177 is currently unknown but includes the potential for arbitrary code execution or denial of service on affected systems.

CVE-2009-1177: Buffer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-1177?

How do I fix CVE-2009-1177?

What software versions are affected by CVE-2009-1177?

Can CVE-2009-1177 be exploited remotely?

What impact does CVE-2009-1177 have on systems?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2009-1177?

How do I fix CVE-2009-1177?

What software versions are affected by CVE-2009-1177?

Can CVE-2009-1177 be exploited remotely?

What impact does CVE-2009-1177 have on systems?