Lucene search

K

PRIOn knowledge basePRION:CVE-2008-1721

HistoryApr 10, 2008 - 7:05 p.m.

Integer overflow

2008-04-1019:05:00

PRIOn knowledge base

www.prio-n.com

6

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.101 Low

EPSS

Percentile

94.8%

Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow.

CPENameOperatorVersion
ubuntu_linuxeq7.04
ubuntu_linuxeq7.10
ubuntu_linuxeq8.04
ubuntu_linuxeq6.06
debian_linuxeq4.0
pythonge2.4.0
pythonlt2.4.6
pythonge2.5.0
pythonle2.5.2

References

bugs.python.org/issue2586

lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

secunia.com/advisories/29889

secunia.com/advisories/29955

secunia.com/advisories/30872

secunia.com/advisories/31255

secunia.com/advisories/31358

secunia.com/advisories/31365

secunia.com/advisories/33937

secunia.com/advisories/37471

secunia.com/advisories/38675

security.gentoo.org/glsa/glsa-200807-01.xml

securityreason.com/securityalert/3802

slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289

support.apple.com/kb/HT3438

support.avaya.com/css/P8/documents/100074697

wiki.rpath.com/wiki/Advisories:rPSA-2008-0149

www.debian.org/security/2008/dsa-1551

www.debian.org/security/2008/dsa-1620

www.mandriva.com/security/advisories?name=MDVSA-2008:085

www.securityfocus.com/archive/1/490690/100/0/threaded

www.securityfocus.com/archive/1/507985/100/0/threaded

www.securityfocus.com/bid/28715

www.securitytracker.com/id?1019823

www.ubuntu.com/usn/usn-632-1

www.vmware.com/security/advisories/VMSA-2009-0016.html

www.vupen.com/english/advisories/2008/1229/references

www.vupen.com/english/advisories/2009/3316

exchange.xforce.ibmcloud.com/vulnerabilities/41748

issues.rpath.com/browse/RPL-2444

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8249

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8494

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9407

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.101 Low

EPSS

Percentile

94.8%

Related for PRION:CVE-2008-1721

freebsd1 veracode1 cve1 openvas26 nessus18 ubuntucve1 securityvulns1 gentoo1 debian2 osv2 slackware1 ubuntu1 redhat2 oraclelinux2 centos1 vmware2