CVE-2010-2540

EPSS 2.0%

Published: 8/2/2010Modified: 4/28/2026

Description

mapserv.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 does not properly restrict the use of CGI command-line arguments that were intended for debugging, which allows remote attackers to have an unspecified impact via crafted arguments.

Affected packages (1)

Debian/mapserverfrom 0, < 5.6.4-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-2540