Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-4965

Опубликовано: 18 сент. 2007
Источник: nvd
CVSS2: 5.8
EPSS Низкий

Описание

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
Версия до 2.5.1 (включая)

EPSS

Процентиль: 92%
0.086
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-190

Связанные уязвимости

ubuntu логотип

CVE-2007-4965

ubuntu
почти 18 лет назад

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

redhat логотип

CVE-2007-4965

redhat
почти 18 лет назад

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

debian логотип

CVE-2007-4965

debian
почти 18 лет назад

Multiple integer overflows in the imageop module in Python 2.5.1 and e ...

github логотип

GHSA-m9f3-5w45-2j8h

github
около 3 лет назад

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

oracle-oval логотип

ELSA-2009-1176

oracle-oval
почти 16 лет назад

ELSA-2009-1176: python security update (MODERATE)

EPSS

Процентиль: 92%
0.086
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-190