Lucene search

K
ubuntucveUbuntu.comUB:CVE-2007-5741
HistoryNov 07, 2007 - 12:00 a.m.

CVE-2007-5741

2007-11-0700:00:00
ubuntu.com
ubuntu.com
9

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.2%

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to
execute arbitrary Python code via network data containing pickled objects
for the (1) statusmessages or (2) linkintegrity module, which the module
unpickles and executes.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchzope-cmfplone< 2.5.2-3UNKNOWN
ubuntu8.10noarchzope-cmfplone< 2.5.2-3UNKNOWN

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.2%

Related for UB:CVE-2007-5741