CVE-2013-1633
CVE-2013-1633 affects setuptools’ easy_install, where prior to version 0.7 it retrieved packages over HTTP without integrity checks, enabling MITM execution of arbitrary code. Affected component: python-setuptools/setuptools. Impact: remote code execution via crafted responses. Root cause: lack o...