CVE-2019-20907 affecting package python2 2.7.18-9

CVE-2019-20907 affecting package python2 2.7.18-9. A patched version of the package is available...

CVE-2019-9674 affecting package python2 2.7.18-14

CVE-2019-9674 affecting package python2 2.7.18-14. A patched version of the package is available...

Xerror - Fully Automated Pentesting Tool

Xerror is an automated penetration tool , which will helps security professionals and non professionals to automate their pentesting tasks. Xerror will perform all tests and, at the end generate two reports for executives and analysts. Xerror provides GUI easy to use menu driven options.Iinternal...

openSUSE: Security Advisory for virt-bootstrap (openSUSE-SU-2020:1856-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-2317)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : python2 (EulerOS-SA-2020-2317)

According to the version of the python2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker...

Fedora 31 : python2 (2020-e33acdea18)

Fix CVE-2020-26116: Reject control chars in HTTP method in httplib Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora: Security Advisory for python2 (FEDORA-2020-e33acdea18)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2017-17522 affecting package python2 2.7.18-14

CVE-2017-17522 affecting package python2 2.7.18-14. A patched version of the package is available...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-1902)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : python2 (EulerOS-SA-2020-1902)

According to the version of the python2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when...

CRLF Injection

urllib2 in python2 is vulnerable to CRLF injection. The vulnerability exists if an attacker controls a URL parameter, as demonstrated by the first argument to urllib.request.urlopen with \r\n specifically in the host component of a URL followed by an HTTP header. This vulnerability is similar to...

Fedora 31 : python2 (2020-826b24c329)

Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

openSUSE Security Update : targetcli-fb (openSUSE-2020-1141)

This update for targetcli-fb fixes the following issues : - CVE-2020-13867: Fixed the permissions in /etc/target bsc1172743 This update was imported from the SUSE:SLE-15-SP1:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

Pi-hole 4.3.2 - Remote Code Execution (Authenticated)

!/usr/bin/env python2 Exploit Title: Pi-hole 4.3.2 - Remote Code Execution Authenticated Date: 2020-08-04 Exploit Author: Luis Vacas @CyberVaca Vendor Homepage: https://pi-hole.net/ Software Link: https://github.com/pi-hole/pi-hole Version: = 4.3.2 Tested on: Ubuntu 19.10 CVE : CVE-2020-8816...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-1822)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : python2 (EulerOS-SA-2020-1822)

According to the version of the python2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open,...

Photon OS 3.0: Python2 PHSA-2020-3.0-0118

An update of the python2 package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0118. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid139044;...

Photon OS 1.0: Python2 PHSA-2020-1.0-0309

An update of the python2 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0309. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 2.0: Python2 PHSA-2020-2.0-0265

An update of the python2 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0265. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...