Vulnerability & Exploit Database

Back to search

Gentoo Linux: CVE-2007-4965: Python: User-assisted execution of arbitrary code

Severity CVSS Published Added Modified
6 (AV:N/AC:M/Au:N/C:P/I:N/A:P) September 18, 2007 October 30, 2017 October 30, 2017

Description

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

gentoo-linux-upgrade-dev-lang-python

Related Vulnerabilities