Zope Unpacking Function Arbitrary Object Access

2004-01-08T08:09:27
ID OSVDB:10316
Type osvdb
Reporter OSVDB
Modified 2004-01-08T08:09:27

Description

Solution Description

Upgrade to version 2.6.3, 2.7.0 Beta4, or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.zope.org/ Vendor Specific News/Changelog Entry: http://mail.zope.org/pipermail/zope-announce/2004-January/001326.html Vendor Specific News/Changelog Entry: http://mail.zope.org/pipermail/zope-announce/2004-January/001325.html Vendor Specific News/Changelog Entry: http://www.zope.org/Products/Zope/2.6.3/HISTORY.txt Vendor Specific News/Changelog Entry: http://www.zope.org/Products/Zope/2.6.3/CHANGES.txt Secunia Advisory ID:10594