CVE-2008-4864

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different vulnerability than CVE-2007-4965 and CVE-2008-1679.

References

http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

http://scary.beasts.org/security/CESA-2008-008.html

http://secunia.com/advisories/33937

http://secunia.com/advisories/37471

http://support.apple.com/kb/HT3438

http://svn.python.org/view/python/trunk/Modules/imageop.c?rev=66689&view=diff&r1=66689&r2=66688&p1=python/trunk/Modules/imageop.c&p2=/python/trunk/Modules/imageop.c

http://svn.python.org/view?rev=66689&view=rev

http://www.openwall.com/lists/oss-security/2008/10/27/2

http://www.openwall.com/lists/oss-security/2008/10/29/3

http://www.securityfocus.com/archive/1/507985/100/0/threaded

http://www.securityfocus.com/bid/31932

http://www.securityfocus.com/bid/31976

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

http://www.vupen.com/english/advisories/2009/3316

https://exchange.xforce.ibmcloud.com/vulnerabilities/46606

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10702

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8354

Details

Source: MITRE

Published: 2008-11-01

Updated: 2018-10-11

Type: CWE-189

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:python_software_foundation:python:1.5.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:1.6:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:1.6.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.0:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.1.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.1.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.1.3:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.2.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.2.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.2.3:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.3:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.4:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.5:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.3.6:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.4:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.4.1:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.4.2:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.4.3:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.4.4:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.5:*:*:*:*:*:*:*

cpe:2.3:a:python_software_foundation:python:2.5.1:*:*:*:*:*:*:*

Tenable Plugins

View all (20 total)

IDNameProductFamilySeverity
89117VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0016) (remote check)NessusMisc.
critical
67898Oracle Linux 3 : python (ELSA-2009-1178)NessusOracle Linux Local Security Checks
critical
67897Oracle Linux 4 : python (ELSA-2009-1177)NessusOracle Linux Local Security Checks
critical
67896Oracle Linux 5 : python (ELSA-2009-1176)NessusOracle Linux Local Security Checks
critical
60625Scientific Linux Security Update : python for SL 4.x on i386/x86_64NessusScientific Linux Local Security Checks
critical
60624Scientific Linux Security Update : python for SL 3.0.x on i386/x86_64NessusScientific Linux Local Security Checks
critical
60622Scientific Linux Security Update : python for SL5.x i386/x86_64NessusScientific Linux Local Security Checks
critical
43771CentOS 5 : python (CESA-2009:1176)NessusCentOS Local Security Checks
critical
42870VMSA-2009-0016 : VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.NessusVMware ESX Local Security Checks
medium
41581SuSE 10 Security Update : Python (ZYPP Patch Number 5837)NessusSuSE Local Security Checks
critical
41260SuSE9 Security Update : Python (YOU Patch Number 12316)NessusSuSE Local Security Checks
critical
40402RHEL 3 : python (RHSA-2009:1178)NessusRed Hat Local Security Checks
critical
40401RHEL 4 : python (RHSA-2009:1177)NessusRed Hat Local Security Checks
critical
40400RHEL 5 : python (RHSA-2009:1176)NessusRed Hat Local Security Checks
critical
40394CentOS 3 : python (CESA-2009:1178)NessusCentOS Local Security Checks
critical
40361Ubuntu 6.06 LTS / 8.04 LTS / 8.10 : python2.4, python2.5 vulnerabilities (USN-806-1)NessusUbuntu Local Security Checks
critical
40116openSUSE Security Update : python (python-360)NessusSuSE Local Security Checks
high
36693Mandriva Linux Security Advisory : python (MDVSA-2009:003)NessusMandriva Local Security Checks
critical
35684Mac OS X Multiple Vulnerabilities (Security Update 2009-001)NessusMacOS X Local Security Checks
critical
35332openSUSE 10 Security Update : python (python-5848)NessusSuSE Local Security Checks
high