Summary
This host is installed with Python and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow a remote attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.
Impact Level: System/Application
Solution
Upgrade to Python version 2.7.7, 3.3.4 or later.
For updates refer www.python.org/download/
Or Apply the appropriate patch from below link,
http://bugs.python.org/issue20246
*****
NOTE: Ignore this warning if patch is already applied.
*****
Insight
Flaw is due to a boundary error within the 'sock_recvfrom_into' function.
Affected
Python version 2.5 before 2.7.7 and 3.x before 3.3.4
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-1912 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
- ActiveFax RAW Server Multiple Buffer Overflow Vulnerabilities
- Adobe Flash CS3 SWF Processing Buffer Overflow Vulnerabilities
- BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
- Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)