Description

python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method. An attacker could use this flaw to cause denial of service.

Remediation

References

CVE-2018-1060

Related Vulnerabilities

Dolibarr Incorrect Authorization Vulnerability (CVE-2021-37517)

MySQL CVE-2018-2665 Vulnerability (CVE-2018-2665)

WordPress Plugin Elements kit Elementor addons (Header & Footer Builder, Mega Menu Builder, Layout Library) Multiple Cross-Site Scripting Vulnerabilities (2.1.7)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4288)

WordPress Plugin podPress Cross-Site Scripting (8.8.10.13)

Severity

High

Classification

CVE-2018-1060 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities