Description

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.

Remediation

References

CVE-2018-1060

Related Vulnerabilities

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-7134)

Oracle JRE CVE-2023-22081 Vulnerability (CVE-2023-22081)

MySQL CVE-2024-20983 Vulnerability (CVE-2024-20983)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0216)

WordPress Plugin Gallery by BestWebSoft Cross-Site Scripting (4.2.1)

Severity

High

Classification

CVE-2018-1060 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities