ubuntu · CVE-2011-2703

Quick triage

Priority: medium Published: 2011-08-01 19:55:00 UTC Updated: 2024-07-24 15:57:39 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2011-2703 medium priority: Ubuntu including 1 source packages (mapserver), 5 status rows across 5 suites (hardy, lucid, maverick, natty, upstream): released 4, needs-triage 1.

Description:

Multiple SQL injection vulnerabilities in MapServer before 4.10.7, 5.x before 5.6.7, and 6.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via vectors related to (1) OGC filter encoding or (2) WMS time support.

cvelogic Threat Intelligence