Total
6 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2005-0088 | 1 Apache | 1 Mod Python | 2018-10-19 | 7.5 HIGH | N/A |
The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL. | |||||
CVE-2004-2680 | 1 Apache | 1 Mod Python | 2018-10-19 | 5.0 MEDIUM | N/A |
mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory. | |||||
CVE-2003-0973 | 1 Apache | 1 Mod Python | 2017-10-10 | 5.0 MEDIUM | N/A |
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string. | |||||
CVE-2006-1095 | 1 Apache | 1 Mod Python | 2017-07-19 | 7.2 HIGH | N/A |
Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie. | |||||
CVE-2004-0096 | 1 Apache | 1 Mod Python | 2008-09-05 | 5.0 MEDIUM | N/A |
Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973. | |||||
CVE-2002-0185 | 1 Apache | 1 Mod Python | 2008-09-05 | 7.5 HIGH | N/A |
mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous functions from the imported module. |