CVE-2010-1678

Severity CVSS v4.0:
Pending analysis
Type:
CWE-20 Input Validation
Publication date:
29/10/2019
Last modified:
21/11/2024

Description

Mapserver 5.2, 5.4 and 5.6 before 5.6.5-2 improperly validates symbol index values during Mapfile parsing.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:osgeo:mapserver:*:*:*:*:*:*:*:* 5.6.0 (including) 5.6.5.-2 (excluding)
cpe:2.3:a:osgeo:mapserver:5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:osgeo:mapserver:5.4.0:*:*:*:*:*:*:*