Lucene search
PRIOn knowledge basePRION:CVE-2014-3429HistoryAug 07, 2014 - 11:13 a.m.
Code injection
2014-08-0711:13:00
PRIOn knowledge base
www.prio-n.com
5
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page.
References
advisories.mageia.org/MGASA-2014-0320.html
lambdaops.com/cross-origin-websocket-hijacking-of-ipython
lists.opensuse.org/opensuse-updates/2014-08/msg00039.html
permalink.gmane.org/gmane.comp.python.ipython.devel/13198
seclists.org/oss-sec/2014/q3/152
www.mandriva.com/security/advisories?name=MDVSA-2015:160
bugzilla.redhat.com/show_bug.cgi?id=1119890
exchange.xforce.ibmcloud.com/vulnerabilities/94497
github.com/ipython/ipython/pull/4845
Related
mageia
mageia
Updated ipython package fixes security vulnerability
2014-08-06 14:31:11
securityvulns
securityvulns
[ MDVSA-2014:157 ] ipython
2014-08-11 00:00:00
IPython code execution
2014-08-11 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : ipython (MDVSA-2015:160)
2015-03-30 00:00:00
Fedora 19 : ipython-0.13.2-4.fc19 (2014-8402)
2014-07-26 00:00:00
Fedora 20 : ipython-0.13.2-4.fc20 (2014-8394)
2014-07-26 00:00:00
ubuntucve
ubuntucve
CVE-2014-3429
2014-08-07 00:00:00
cvelist
cvelist
CVE-2014-3429
2014-08-07 10:00:00
veracode
veracode
Arbitrary Code Execution
2024-05-09 10:06:41
debiancve
debiancve
CVE-2014-3429
2014-08-07 11:13:34
cve
cve
CVE-2014-3429
2014-08-07 11:13:34
osv
osv
PYSEC-2014-21
2014-08-07 11:13:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0320)
2022-01-28 00:00:00
Fedora Update for ipython FEDORA-2014-8394
2014-07-28 00:00:00
Fedora Update for ipython FEDORA-2014-8402
2014-07-28 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: ipython-0.13.2-4.fc19
2014-07-25 10:01:54
[SECURITY] Fedora 20 Update: ipython-0.13.2-4.fc20
2014-07-25 10:06:07
nvd
nvd
CVE-2014-3429
2014-08-07 11:13:34
github
github