CVE-2015-1326
python-dbusmock arbitrary code execution or file overwrite when templates are loaded from /tmp
python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spawn_server_template() method could be tricked into executing malicious code if an attacker supplies a .pyc file.
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Produtos afetados
Ubuntu · python-dbusmockQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →