Ubuntu 10.04 LTS / 11.04 / 11.10 : python2.6 vulnerabilities (USN-1596-1)

It was discovered that Python would prepend an empty string to sys.path under certain circumstances. A local attacker with write access to the current working directory could exploit this to execute arbitrary code. CVE-2008-5983 It was discovered that the audioop module did not correctly perform...

USN-1596-1: Python 2.6 vulnerabilities

It was discovered that Python would prepend an empty string to sys.path under certain circumstances. A local attacker with write access to the current working directory could exploit this to execute arbitrary code. CVE-2008-5983 It was discovered that the audioop module did not correctly perform...

Mandriva Update for python MDVSA-2011:096 (python)

Check for the Version of python OpenVAS Vulnerability Test Mandriva Update for python MDVSA-2011:096 python Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CVE-2011-1015

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

Integer overflow

Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service application crash via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a...

CVE-2010-1634

Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2 allow context-dependent attackers to cause a denial of service application crash via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a...

AlumniServer 1.0.1 (resetpwemail) Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= AlumniServer 1.0.1 resetpwemail Blind SQL Injection Exploit ============================================================= !/usr/bin/python...

Fedora 10 : weechat-0.2.6.1-1.fc10 (2009-2859)

Thu Mar 19 2009 Paul P. Komkoff Jr - 0.2.6.1-1 - fix bz490709 - Wed Feb 25 2009 Fedora Release Engineering - 0.2.6-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora11MassRebuild - Sun Nov 30 2008 Ignacio Vazquez-Abrams - 0.2.6-6 - Rebuild for Python 2.6 Note that Tenable Network Security has...

Fedora Core 9 FEDORA-2009-2591 (roundup)

The remote host is missing an update to roundup announced via advisory FEDORA-2009-2591. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora Core 10 FEDORA-2009-2583 (roundup)

The remote host is missing an update to roundup announced via advisory FEDORA-2009-2583. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by th...

Fedora 9 : roundup-1.4.6-4.fc9 (2009-2591)

Mon Mar 9 2009 Paul P. Komkoff Jr - 1.4.6-4 - security bug bz489355 - Wed Feb 25 2009 Fedora Release Engineering - 1.4.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora11MassRebuild - Sat Nov 29 2008 Ignacio Vazquez-Abrams - 1.4.6-2 - Rebuild for Python 2.6 - Fri Oct 3 2008 Paul P. Komkoff...

Fedora Core 10 FEDORA-2009-1737 (fail2ban)

The remote host is missing an update to fail2ban announced via advisory FEDORA-2009-1737. OpenVAS Vulnerability Test $Id: fcore20091737.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1737 fail2ban Authors: Thomas Reinke Copyright: Copyright c 2009...

CVE-2008-5983

Untrusted search path vulnerability in the PySysSetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv0 argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse...

Design/Logic Flaw

Untrusted search path vulnerability in the PySysSetArgv API function in Python 2.6 and earlier, and possibly later versions, prepends an empty string to sys.path when the argv0 argument does not contain a path separator, which might allow local users to execute arbitrary code via a Trojan horse...

Mandrake Security Advisory MDVSA-2009:003 (python)

The remote host is missing an update to python announced via advisory MDVSA-2009:003. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

CVE-2008-5031

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by 1 the stringexpandtabs function in Objects/stringobject.c and 2 the...

CVE-2006-4980

CVE-2006-4980 is a buffer overflow in Python's repr() function for UTF-32/UCS-4 strings in Python 2.3–2.6 (patched before 2006-08-22). It allows DoS and potentially arbitrary code execution when exploited via crafted inputs to scripts. Affected products include Python deployments (notably in envi...