Description

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.

Remediation

References

CVE-2018-1060

Related Vulnerabilities

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.127.3)

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6608)

MySQL CVE-2022-21370 Vulnerability (CVE-2022-21370)

PHP Out-of-bounds Write Vulnerability (CVE-2022-31627)

WordPress Plugin WooCommerce Product Attachment Cross-Site Scripting (1.1.2)

Severity

High

Classification

CVE-2018-1060 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities