CVE-2011-2704

Description

Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors related to OGC filter encoding.

How to fix CVE-2011-2704

To remediate CVE-2011-2704, upgrade the affected package to a fixed version below.

• Debian/mapserver—upgrade to 6.0.1-1 or later

Is CVE-2011-2704 being exploited?

Moderate — EPSS is 7.6%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 6.0.1-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-2704