CVE-2008-5031

Severity

99%

Complexity

99%

Confidentiality

165%

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.

Multiple integer overflows in Python 2.2.3 through 2.5.1, and 2.6, allow context-dependent attackers to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Objects/stringobject.c and (2) the unicode_expandtabs function in Objects/unicodeobject.c. NOTE: this vulnerability reportedly exists because of an incomplete fix for CVE-2008-2315.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Python

First reported 16 years ago

2008-11-10 16:15:00

Last updated 5 years ago

2019-10-25 11:53:00

Affected Software

Python 2.2.3

2.2.3

Python 2.3.7

2.3.7

Python 2.4.6

2.4.6

Python 2.5.1

2.5.1

References

APPLE-SA-2009-02-12

http://scary.beasts.org/security/CESA-2008-008.html

33937

Vendor Advisory

35750

Vendor Advisory

37471

Vendor Advisory

GLSA-200907-16

http://support.apple.com/kb/HT3438

http://svn.python.org/view/python/trunk/Objects/stringobject.c?rev=61350&view=diff&r1=61350&r2=61349&p1=python/trunk/Objects/stringobject.c&p2=/python/trunk/Objects/stringobject.c

http://svn.python.org/view/python/trunk/Objects/unicodeobject.c?rev=61350&view=diff&r1=61350&r2=61349&p1=python/trunk/Objects/unicodeobject.c&p2=/python/trunk/Objects/unicodeobject.c

http://svn.python.org/view?rev=61350&view=rev

[oss-security] 20081105 CVE Request - Python string expandtabs

[oss-security] 20081105 Re: CVE Request - Python string expandtabs

20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

ADV-2009-3316

Vendor Advisory

python-expandtabs-integer-overflow(46612)

oval:org.mitre.oval:def:11280

oval:org.mitre.oval:def:8564

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.