Lucene search
K

50 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Python 1.5/1.6/2.0/2.1.x Pickle Class Constructor Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/5257/info Python is an open source, object oriented programming language. The Python Pickle module is provided to convert object variables into a serialized form pickling, and later recover the data back into an object...

7.1AI score
Exploits0
OSV
OSV
added 2013/09/27 10:8 a.m.5 views

CVE-2013-5942

Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object, related to 1 remotestorage.py, 2 storage.py, 3 render/datalib.py, and 4 whitelist/views.py, a different vulnerability than CVE-2013-5093...

7.3AI score
Exploits0References2
OSV
OSV
added 2013/09/27 10:8 a.m.9 views

CVE-2013-5093

The renderLocalView function in render/views.py in graphite-web in Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object...

7.2AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2013/09/27 10:8 a.m.19 views

CVE-2013-5093

The renderLocalView function in render/views.py in graphite-web in Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object...

6.8CVSS6.2AI score0.38668EPSS
Exploits5References3
Prion
Prion
added 2013/09/27 10:8 a.m.12 views

Authentication flaw

The renderLocalView function in render/views.py in graphite-web in Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object...

6.8CVSS7.6AI score0.38668EPSS
Exploits5References7Affected Software1
RedHat Linux
RedHat Linux
added 2013/03/28 10:14 p.m.8 views

Openstack-Swift: insecure use of python pickle()

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

9.8CVSS7.8AI score0.06518EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/07/19 12:0 a.m.32 views

RHEL 6 : system-config-firewall (RHSA-2011:0953)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0953 advisory. system-config-firewall is a graphical user interface for basic firewall setup. It was found that system-config-firewall used the Python pickle module...

7.8CVSS7.8AI score0.00421EPSS
Exploits0References5
securityvulns
securityvulns
added 2002/07/18 12:0 a.m.30 views

Multiple bugs in Python

Input validation problems in pickle module...

1.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/07/18 12:0 a.m.41 views

Exploit for a security hole in the pickle module for Python versions <= 2.1.x

""" Exploit for a security hole in the pickle module for Python versions = 2.1.x Pickle is the name of a Python module for object persistence. It can convert arbitrary Python objects into byte streams and back. Though the documentation for Python 1.5.2 read The pickle module doesn't handle code...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2002/07/17 12:0 a.m.38 views

Python 1.5.2 Pickle - Unsafe 'eval()' Code Execution

source: https://www.securityfocus.com/bid/5255/info Python is an open source, object oriented programming language. The Python Pickle module is provided to convert object variables into a serialized form "pickling", and later recover the data back into an object hierarchy "unpickling". A...

7.4AI score
Exploits0
Rows per page
Query Builder