Description
Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.
Remediation
References
Related Vulnerabilities
WordPress Plugin uContext for Amazon Cross-Site Request Forgery (3.9.1)
Nginx Out-of-bounds Write Vulnerability (CVE-2014-0133)
WordPress Plugin Maintenance Mode Unspecified Vulnerability (1.3.3)
WordPress Plugin Slimstat Analytics PHP Object Injection (4.7)
WordPress Plugin Gallery by BestWebSoft 'php.php' Arbitrary File Upload (3.06)