Description

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Remediation

References

CVE-2012-1150

Related Vulnerabilities

WordPress Plugin Launcher:Coming Soon & Maintenance Mode Cross-Site Scripting (1.0.10)

MySQL CVE-2015-4772 Vulnerability (CVE-2015-4772)

ColdFusion 9 solr service exposed

Apache HTTP Server Other Vulnerability (CVE-2001-0729)

PHP Double Free Vulnerability (CVE-2019-11049)

Severity

Medium

Classification

CVE-2012-1150

Tags

Missing Update Known Vulnerabilities