Description
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Remediation
References
Related Vulnerabilities
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2327)
WordPress Other Vulnerability (CVE-2006-1796)
WordPress Plugin Quiz And Survey Master-Best Quiz, Exam and Survey Cross-Site Scripting (7.1.18)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)