CVE-2007-2052
CVE-2007-2052
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2.5 causes an incorrect buffer size to be used for the strxfrm function, which allows context-dependent attackers to read portions of memory via unknown manipulations that trigger a buffer over-read due to missing null termination.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/30018unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=416934http://lists.vmware.com/pipermail/security-announce/2008/000005.htmlhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235093http://secunia.com/advisories/25190http://secunia.com/advisories/25217http://secunia.com/advisories/25233http://secunia.com/advisories/25353http://secunia.com/advisories/25787http://secunia.com/advisories/28027http://secunia.com/advisories/28050http://secunia.com/advisories/29032http://secunia.com/advisories/29303