CVE-2008-4108

The CVE-2008-4108 entry concerns Tools/faqwiz/move-faqwiz.sh (the generic FAQ wizard moving tool) in Python 2.4.5, where a local attacker could cause a symlink attack on a temporary file (tmp$RANDOM.tmp) to overwrite arbitrary files. According to the NVD/mitigations notes, this is a local vulnera...

CVE-2007-1657

CVE-2007-1657 describes a stack-based buffer overflow in the file_compress function of minigzip (Modules/zlib) used by Python 2.5 . An overly long file argument can allow a context-dependent attacker to execute arbitrary code. The affected component is minigzip within zlib; the vulnerability impa...