Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Python Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability - CVE-2010-3493 - Vulnerability Database
Python

Python Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability - CVE-2010-3493

Medium
Reference: CVE-2010-3493
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-3493
Title: Python Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability
Overview:

Multiple race conditions in smtpd.py in the smtpd module in Python 2.6 2.7 3.1 and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection leading to the accept function having an unexpected return value of None an unexpected value of None for the address or an ECONNABORTED EAGAIN or EWOULDBLOCK error or the getpeername function having an ENOTCONN error a related issue to CVE-2010-3492.