Page 25 of 122 results (0.014 seconds)

CVSS: 7.5EPSS: 6%CPEs: 1EXPL: 0

CVE-2004-0150

https://notcve.org/view.php?id=CVE-2004-0150

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS. Desbordamiento de búfer en getaddrinfo de Python 2.2 permite a atacantes remotos ejecutar código arbitrario mediante una dirección IPv6 obtenida usando DNS. • http://www.debian.org/security/2004/dsa-458 http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019 http://www.osvdb.org/4172 http://www.securityfocus.com/bid/9836 https://exchange.xforce.ibmcloud.com/vulnerabilities/15409 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

CVE-2002-1119

https://notcve.org/view.php?id=CVE-2002-1119

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-045.0.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000527 http://mail.python.org/pipermail/python-dev/2002-August/027229.html http://marc.info/?l=bugtraq&m=104333092200589&w=2 http://www.debian.org/security/2002/dsa-159 http://www.iss.net/security_center/static/10009.php http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-082.php http://www.redhat.com/support/errata/RHSA-2002-202.html •