logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2011-4944

Description

Python 2.6 through 3.2 creates ~/.pypirc with world-readable permissions before changing them after data has been written, which introduces a race condition that allows local users to obtain a username and password by reading this file.


Affected Software


CPE Name Name Version
python:python python 2.6.2
python:python python 2.6.5
python:python python 2.7.2
python:python python 2.7.1
python:python python 3.2
python:python python 3.2
python:python python 2.6.2150
python:python python 2.6.6
python:python python 2.6.4
python:python python 2.7.2150
python:python python 3.0.1
python:python python 3.0
python:python python 2.6.7
python:python python 2.6.8
python:python python 2.6.1
python:python python 2.6.3
python:python python 2.7.1150
python:python python 3.1.2
python:python python 3.1.1
python:python python 3.1.4
python:python python 3.1.3
python:python python 2.6.6150
python:python python 2.7.1
python:python python 2.7.1150
python:python python 3.1.2150
python:python python 3.1
python:python python 2.7.3
python:python python 3.1.5

Related