Описание
os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.
Ссылки
- Broken LinkThird Party Advisory
- Third Party Advisory
- Mailing ListVendor Advisory
- Mailing List
- PatchVendor Advisory
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- PatchThird Party AdvisoryVDB EntryVendor Advisory
- Broken LinkThird Party Advisory
- Third Party Advisory
- Mailing ListVendor Advisory
- Mailing List
- PatchVendor Advisory
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- PatchThird Party AdvisoryVDB EntryVendor Advisory
Уязвимые конфигурации
EPSS
4.6 Medium
CVSS2
Дефекты
Связанные уязвимости
os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.
os._execvpe from os.py in Python 2.2.1 and earlier creates temporary f ...
os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.
Уязвимости операционной системы Debian GNU/Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4.6 Medium
CVSS2