Description

Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code via a crafted string.

Remediation

References

CVE-2014-1912

Related Vulnerabilities

Ruby Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-1004)

Apache Traffic Server Memory Disclosure Vulnerability (CVE-2020-17508)

WordPress Plugin Profile Builder-User Profile & User Registration Forms Cross-Site Scripting (3.6.1)

Nginx Use After Free Vulnerability (CVE-2012-1180)

WordPress Plugin Jigoshop Information Disclosure (1.17.9)

Severity

High

Classification

CVE-2014-1912 CWE-119

Tags

Missing Update Known Vulnerabilities