Unrated severityNVD Advisory· Published Aug 31, 2007· Updated Apr 23, 2026

CVE-2007-4629

Description

Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and possibly execute arbitrary code via a mapfile with a long layer name, group name, or metadata entry name.

Affected products

University Of Minnesota/Mapserver
cpe:2.3:a:university_of_minnesota:mapserver:*:*:*:*:*:*:*:*
Range: <=4.10.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

mapserver.gis.umn.edu/download/current/HISTORY.TXT/nvdPatch
secunia.com/advisories/26561nvd
secunia.com/advisories/26718nvd
secunia.com/advisories/29688nvd
securityreason.com/securityalert/3082nvd
trac.osgeo.org/mapserver/ticket/2252nvd
www.debian.org/security/2008/dsa-1539nvd
www.securityfocus.com/bid/25582nvd
www.vupen.com/english/advisories/2007/2974nvd
bugzilla.redhat.com/show_bug.cginvd
www.redhat.com/archives/fedora-package-announce/2007-September/msg00096.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000