Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Python Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability - CVE-2008-1887 - Vulnerability Database
Python

Python Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability - CVE-2008-1887

Critical
Reference: CVE-2008-1887
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-1887
Title: Python Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability
Overview:

Python 2.5.2 and earlier allows context-dependent attackers to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function which allocates less memory than expected when assert() is disabled and triggers a buffer overflow.