Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2004-0150

Published

20 years ago

Last Modified

8 months ago

CVSSv2.0 Severity

High

Impact Analysis

Share on Facebook
Share on LinkedIn
Share on Twitter

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS..

CVSSv2.0 Score

Severity: High
Base Score: 7.5/10
Exploit Score: 10/10
Access Vector: Network
Access Complexity: Low
Authentication Required: None
Impact Score: 6.4/10
Confidentiality Impact: Partial
Availability Impact: Partial
Integrity Impact: Partial

Products Affected

CPE	Affected	Vulnerable	Excluding	Edit
cpe:2.3:a:python:python::::::::	Yes	2.2.0	2.2.2

References

http://www.debian.org/security/2004/dsa-458
http://www.securityfocus.com/bid/9836
http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019
http://www.osvdb.org/4172
https://exchange.xforce.ibmcloud.com/vulnerabilities/15409