Description
Multiple integer overflows in imageop.c in Python before 2.5.3 allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete fix for CVE-2007-4965.
Remediation
References
Related Vulnerabilities
WordPress Plugin Simple Yearly Archive Cross-Site Scripting (2.1.8)
WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3)
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4192)
XWiki Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2022-23619)