Description
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2007-1887)
WordPress Plugin teachPress Unspecified Vulnerability (5.0.17)
Drupal Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2017-6381)
WordPress Plugin Keyword Meta Cross-Site Request Forgery (3.0)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-8235)