Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Python Multiple Vulnerabilities (Windows)

Information

Severity

Severity

High

Family

Family

Buffer overflow

CVSSv2 Base

CVSSv2 Base

7.5

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

14 years ago

Modified

Modified

4 years ago

Summary

The host is installed with Python, which is prone to multiple vulnerabilities.

Insight

Insight

The flaws exist due to integer overflow in, - hashlib module, which can lead to an unreliable cryptographic digest results. - the processing of unicode strings. - the PyOS_vsnprintf() function on architectures that do not have a vsnprintf() function. - the PyOS_vsnprintf() function when passing zero-length strings can lead to memory corruption.

Affected Software

Affected Software

Python 2.5.2 and prior on Windows (All).

Solution

Solution

A fix is available in the SVN repository, please see the references for more information.

Common Vulnerabilities and Exposures (CVE)