Summary
This host has Python installed and is prone to integer overflow vulnerability.
Impact
Remote exploitation will allow execution of arbitrary code via large number of integer values to modules.
Impact Level: Application
Solution
Upgrade to Python 2.5.5 or later.
For updates refer to http://www.python.org/
Insight
The flaw exists due the the way it handles large integer values in the tabsize arguments as input to expandtabs methods (string_expandtabs and nicode_expandtabs) in stringobject.c and unicodeobject.c.
Affected
Python 2.5.2 on Windows.
Severity
Classification
-
CVE CVE-2008-5031 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
- Adobe Reader 'XFDF' File Buffer Overflow Vulnerability (Mac OS X)
- Apple iTunes 'itpc:' URI Buffer Overflow Vulnerability
- Adobe Flash Player Multiple Vulnerabilities - Mar09 (Linux)
- Adobe Reader 'File Extension' Buffer Overflow Vulnerability (Mac OS X)