CVE-2005-0089 - The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC

CVE-2005-0089

Summary

The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, and 2.4, when used by XML-RPC servers that use the register_instance method to register an object without a _dispatch method, allows remote attackers to read or modify globals of the associated module, and possibly execute arbitrary code, via dotted attributes.

References

Vulnerable Configurations

cpe:2.3:a:python:python:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:-:*:*:*:*:*:*:*
cpe:2.3:a:python:python:-:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.9:*:*:*:*:*:*:*
cpe:2.3:a:python:python:0.9.9:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.4:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.4:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.6:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.6:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:python:python:2.3.4:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 02-08-2023 - 18:04)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

oval via4

accepted

2013-04-29T04:22:26.447-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 3
oval oval:org.mitre.oval:def:11782
comment CentOS Linux 3.x
oval oval:org.mitre.oval:def:16651
comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990

description

family

unix

oval:org.mitre.oval:def:9811

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering queued messages and might lead to disk consumption by core dump files.

version

redhat via4

advisories

rhsa

id	RHSA-2005:108

rpms

python-0:2.3.4-14.1
python-debuginfo-0:2.3.4-14.1
python-devel-0:2.3.4-14.1
python-docs-0:2.3.4-14.1
python-tools-0:2.3.4-14.1
tkinter-0:2.3.4-14.1
python-0:2.2.3-6.1
python-debuginfo-0:2.2.3-6.1
python-devel-0:2.2.3-6.1
python-tools-0:2.2.3-6.1
tkinter-0:2.2.3-6.1

refmap via4

bid	12437
bugtraq	20050203 Python Security Advisory PSF-2005-001 - SimpleXMLRPCServer.py
confirm	http://python.org/security/PSF-2005-001/patch-2.2.txt http://www.python.org/security/PSF-2005-001/
debian	DSA-666
mandrake	MDKSA-2005:035
sectrack	1013083
secunia	14128
trustix	2005-0003
xf	python-simplexmlrpcserver-bypass(19217)

Last major update

02-08-2023 - 18:04

Published

02-05-2005 - 04:00

Last modified

02-08-2023 - 18:04