Description

The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

Remediation

References

CVE-2010-3492

Related Vulnerabilities

Liferay Portal Use of Password Hash With Insufficient Computational Effort Vulnerability (CVE-2024-25607)

WordPress Plugin GiveWP-Donation and Fundraising Platform Security Bypass (2.5.9)

WordPress Plugin Article Directory Cross-Site Scripting (1.3)

WordPress Plugin User Submitted Posts Cross-Site Scripting (20151113)

WordPress Plugin WooCommerce-Store Exporter Multiple Cross-Site Scripting Vulnerabilities (1.7.5)

Severity

Medium

Classification

CVE-2010-3492

Tags

Missing Update Known Vulnerabilities