CVE-2004-0150

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS.
Configurations

Configuration 1 (hide)

cpe:2.3:a:python:python:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:47

Type Values Removed Values Added
References () http://www.debian.org/security/2004/dsa-458 - Patch, Vendor Advisory () http://www.debian.org/security/2004/dsa-458 - Patch, Vendor Advisory
References () http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml - Third Party Advisory () http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml - Third Party Advisory
References () http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019 - Broken Link () http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019 - Broken Link
References () http://www.osvdb.org/4172 - Broken Link () http://www.osvdb.org/4172 - Broken Link
References () http://www.securityfocus.com/bid/9836 - Patch, Third Party Advisory, VDB Entry, Vendor Advisory () http://www.securityfocus.com/bid/9836 - Patch, Third Party Advisory, VDB Entry, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/15409 - VDB Entry () https://exchange.xforce.ibmcloud.com/vulnerabilities/15409 - VDB Entry

02 Aug 2023, 18:00

Type Values Removed Values Added
CWE NVD-CWE-Other CWE-120
References (BID) http://www.securityfocus.com/bid/9836 - Patch, Vendor Advisory (BID) http://www.securityfocus.com/bid/9836 - Patch, Third Party Advisory, VDB Entry, Vendor Advisory
References (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/15409 - (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/15409 - VDB Entry
References (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml - (GENTOO) http://www.gentoo.org/security/en/glsa/glsa-200409-03.xml - Third Party Advisory
References (MANDRAKE) http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019 - (MANDRAKE) http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:019 - Broken Link
References (OSVDB) http://www.osvdb.org/4172 - (OSVDB) http://www.osvdb.org/4172 - Broken Link
CPE cpe:2.3:a:python_software_foundation:python:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python_software_foundation:python:2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:*:*:*:*:*:*:*:*
First Time Python
Python python

Information

Published : 2004-04-15 04:00

Updated : 2024-11-20 23:47


NVD link : CVE-2004-0150

Mitre link : CVE-2004-0150

CVE.ORG link : CVE-2004-0150


JSON object : View

Products Affected

python

  • python
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')