CVE-2014-2233 Information

Description

Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors.

Reference

http://iw.mapandroute.de/MapAPI-1.0/releaseHistory.jsp http://iw.mapandroute.de/MapAPI-1.1/releaseHistory.jsp http://www.christian-schneider.net/advisories/CVE-2014-2233.txt