Integer overflow vulnerability in Python - CVE-2017-1000158ID: oval:org.secpod.oval:def:54092 | Date: (C)2019-04-04 (M)2023-03-24 |
Class: VULNERABILITY | Family: windows |
The host is installed with Python through 2.7.13, 3.4.8 and 3.5.5 and is prone to an integer overflow vulnerability. The flaw is present in the application, which fails to properly handle an integer overflow in the PyString_DecodeEscape function in stringobject.c. Successful exploitation allows attackers to cause heap-based buffer overflow and possible arbitrary code execution.
Platform: |
Microsoft Windows Server 2022 |
Microsoft Windows 11 |
Microsoft Windows 2000 |
Microsoft Windows XP |
Microsoft Windows Vista |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |