Filtered by vendor Python Software Foundation
Subscribe
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2008-4108 | 1 Python Software Foundation | 1 Python | 2024-02-28 | 7.2 HIGH | N/A |
| Tools/faqwiz/move-faqwiz.sh (aka the generic FAQ wizard moving tool) in Python 2.4.5 might allow local users to overwrite arbitrary files via a symlink attack on a tmp$RANDOM.tmp temporary file. NOTE: there may not be common usage scenarios in which tmp$RANDOM.tmp is located in an untrusted directory. | |||||
| CVE-2007-1657 | 1 Python Software Foundation | 1 Python | 2024-02-28 | 7.5 HIGH | N/A |
| Stack-based buffer overflow in the file_compress function in minigzip (Modules/zlib) in Python 2.5 allows context-dependent attackers to execute arbitrary code via a long file argument. | |||||
| CVE-2008-0299 | 1 Python Software Foundation | 1 Paramiko | 2024-02-28 | 4.3 MEDIUM | N/A |
| common.py in Paramiko 1.7.1 and earlier, when using threads or forked processes, does not properly use RandomPool, which allows one session to obtain sensitive information from another session by predicting the state of the pool. | |||||