CVE-2013-7338

Python before 3.3.4 RC1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a file size value larger than the size of the zip file to the (1) ZipExtFile.read, (2) ZipExtFile.read(n), (3) ZipExtFile.readlines, (4) ZipFile.extract, or (5) ZipFile.extractall function.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:python:python:3.3.0:-:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:rc2:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:rc3:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.1:-:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.1:rc1:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:beta1:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:rc1:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.3:rc2:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.3:rc1:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:python:python:3.3.0:beta2:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Information

Published : 2014-04-22 07:23

Updated : 2019-08-21 05:41


NVD link : CVE-2013-7338

Mitre link : CVE-2013-7338


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

apple

  • mac_os_x

python

  • python