CVE-2006-1095
- EPSS 0.02%
- Veröffentlicht 09.03.2006 13:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie.
CVE-2005-0088
- EPSS 26.24%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL.
- EPSS 9.92%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.
- EPSS 2.7%
- Veröffentlicht 03.03.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.
- EPSS 5.15%
- Veröffentlicht 15.12.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.
CVE-2002-0185
- EPSS 4.01%
- Veröffentlicht 16.05.2002 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous functions from the imported module.