SOL75004031 - Python vulnerability CVE-2016-1000110

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

UBUNTU-CVE-2016-1000110

The CGIHandler class in Python before 2.7.12 does not protect against the HTTPPROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests...

CVE-2013-7440

The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate...

PSF-2016-1 ssl.match_hostname() IDNA issue

The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate...

Python 3.4 / 3.5 xmlparse_setattro() Type Confusion Vulnerability

Python versions 3.4 and 3.5 suffer from a vulnerability caused by the behavior of the xmlparsesetattro function. When called, the function uses the provided name argument in several conditional statements which assume that the name argument is a string. However, if a name argument is provided tha...

Python 3.5 product_setstate() Out-Of-Bounds Read

Title: Python 3.3 - 3.5 productsetstate Out-of-bounds Read Credit: John Leitch [email protected], Bryce Darling [email protected] Url1: http://autosectools.com/Page/Python-productsetstate-Out-of-bounds-Read Url2: http://bugs.python.org/issue25021 Resolution: Fixed Python 3.3 - 3.5 suffer...

Python 3.4 / 3.5 xmlparse_setattro() Type Confusion

Title: Python 3.4 and 3.5 xmlparsesetattro Type Confusion Credit: John Leitch [email protected], Bryce Darling [email protected] Url1: http://autosectools.com/Page/Python-xmlparsesetattro-Type-Confusion Url2: http://bugs.python.org/issue25019 Resolution: Fixed Python 3.4 and 3.5 suffer...

CVE-2015-5652

CVE-2015-5652 : Untrusted search path vulnerability in Python for Windows (through 3.5.0) allows local privilege escalation via a Trojan horse readline.pyd in the current working directory. Root cause: insecure DLL search path loading of readline.pyd. Impact: arbitrary code execution with the pri...

Python 'ssl.match_hostname()' function security restriction bypass vulnerability

Python is an object-oriented, straightforward computer programming language. Python has a security restriction bypass vulnerability in the 'ssl.matchhostname' function. An attacker could exploit the vulnerability to bypass certain target security restrictions and perform unauthorized operations...

F5 Networks BIG-IP : Python vulnerability (K16398)

Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts. CVE-2006-4980 Impact An attacker may be able to...

Microsoft Windows - OLE Package Manager Code Execution (via Python) (MS14-064) (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python", 'Description' = %q This module exploits a vulnerabilit...

CVE-2014-7185

Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attackers to obtain sensitive information from process memory via a large size and offset in a "buffer" function...

SOL15638 - Python vulnerability CVE-2013-4238

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

CVE-2013-7040

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attackers to cause a denial of service CPU consumptio...

PSF-2014-2 Hash function not randomized properly

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attackers to cause a denial of service CPU consumptio...

Internet Bug Bounty: Python vulnerability: reading arbitrary process memory

Python 2 and 3 are susceptible to arbitrary process memory reading by a user or adversary due to a bug in the json module caused by insufficient bounds checking. The sole prerequisites of this attack are that the attacker is able to control or influence the two parameters of the default scanstrin...

UBUNTU-CVE-2013-7338

Python before 3.3.4 RC1 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a file size value larger than the size of the zip file to the 1 ZipExtFile.read, 2 ZipExtFile.readn, 3 ZipExtFile.readlines, 4 ZipFile.extract, or 5 ZipFile.extractall function...

PSF-2014-3 zipfile DoS using invalid file size

Python before 3.3.4 RC1 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a file size value larger than the size of the zip file to the 1 ZipExtFile.read, 2 ZipExtFile.readn, 3 ZipExtFile.readlines, 4 ZipFile.extract, or 5 ZipFile.extractall function...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : python2.6, python2.7, python3.2, python3.3 vulnerability (USN-2125-1)

Ryan Smith-Roberts discovered that Python incorrectly handled buffer sizes when using the socket.recvfrominto function. An attacker could possibly use this issue to cause Python to crash, resulting in denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has...

CVE-2014-1912

Buffer overflow in the socket.recvfrominto function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code via a crafted string...