National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): python
  • Search Type: Search All
There are 354 matching records.
Displaying matches 341 through 354.
Vuln ID Summary CVSS Severity
CVE-2005-0852

Microsoft Windows XP SP1 allows local users to cause a denial of service (system crash) via an empty datagram to a raw IP over IP socket (IP protocol 4), as originally demonstrated using code in Python 2.3.

Published: May 02, 2005; 12:00:00 AM -04:00
V2: 2.1 LOW
CVE-2004-2680

mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.

Published: December 31, 2004; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-2004-0412

Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server.

Published: August 18, 2004; 12:00:00 AM -04:00
V2: 5.0 MEDIUM
CVE-2004-0150

Buffer overflow in the getaddrinfo function in Python 2.2 before 2.2.2, when IPv6 support is disabled, allows remote attackers to execute arbitrary code via an IPv6 address that is obtained using DNS.

Published: April 15, 2004; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2003-0991

Unknown vulnerability in the mail command handler in Mailman before 2.0.14 allows remote attackers to cause a denial of service (crash) via malformed e-mail commands.

Published: March 03, 2004; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-2004-0096

Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.

Published: March 03, 2004; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-2003-0965

Cross-site scripting (XSS) vulnerability in the admin CGI script for Mailman before 2.1.4 allows remote attackers to steal session cookies and conduct unauthorized activities.

Published: February 17, 2004; 12:00:00 AM -05:00
V2: 6.8 MEDIUM
CVE-2003-0992

Cross-site scripting (XSS) vulnerability in the create CGI script for Mailman before 2.1.3 allows remote attackers to steal cookies of other users.

Published: February 17, 2004; 12:00:00 AM -05:00
V2: 4.3 MEDIUM
CVE-2003-0973

Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.

Published: December 15, 2003; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-2002-1119

os._execvpe from os.py in Python 2.2.1 and earlier creates temporary files with predictable names, which could allow local users to execute arbitrary code via a symlink attack.

Published: October 04, 2002; 12:00:00 AM -04:00
V2: 4.6 MEDIUM
CVE-2002-0855

Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.

Published: September 05, 2002; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2002-0388

Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow remote attackers to execute script via (1) the admin login page, or (2) the Pipermail index summaries.

Published: June 18, 2002; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2002-0185

mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous functions from the imported module.

Published: May 16, 2002; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-2002-0131

ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client's filesystem, which allows remote attackers to read arbitrary files via a malicious web page containing Python script.

Published: March 25, 2002; 12:00:00 AM -05:00
V2: 5.0 MEDIUM