Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Python Multiple Vulnerabilities (Linux)

Information

Severity

Severity

High

Family

Family

Buffer overflow

CVSSv2 Base

CVSSv2 Base

7.5

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

14 years ago

Modified

Modified

3 years ago

Summary

The host is installed Python, which is prone to multiple vulnerabilities. This NVT has been replaced by various LSCs.

Insight

Insight

The flaws exist due to integer overflow in, - hashlib module, which can lead to an unreliable cryptographic digest results. - the processing of unicode strings. - the PyOS_vsnprintf() function on architectures that do not have a vsnprintf() function. - the PyOS_vsnprintf() function when passing zero-length strings can lead to memory corruption.

Affected Software

Affected Software

Python 2.5.2 and prior on Linux (All).

Solution

Solution

Fix is available in the SVN repository.

Common Vulnerabilities and Exposures (CVE)