CVE-2007-4965

Vulnerability Description

Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service (application crash) and possibly obtain sensitive information (memory contents) via crafted arguments to (1) the tovideo method, and unspecified other vectors related to (2) imageop.c, (3) rbgimgmodule.c, and other files, which trigger heap-based buffer overflows.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://bugs.gentoo.org/show_bug.cgi?id=192876Third Party Advisory
• http://docs.info.apple.com/article.html?artnum=307179Third Party Advisory
• http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlMailing List
• http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.htmlMailing List
• http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065826.htmlExploit
• http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.htmlThird Party Advisory
• http://lists.vmware.com/pipermail/security-announce/2008/000005.htmlThird Party Advisory
• http://secunia.com/advisories/26837Broken Link
• http://secunia.com/advisories/27460Broken Link
• http://secunia.com/advisories/27562Broken Link
• http://secunia.com/advisories/27872Broken Link
• http://secunia.com/advisories/28136Broken Link
• http://secunia.com/advisories/28480Broken Link
• http://secunia.com/advisories/28838Broken Link
• http://secunia.com/advisories/29032Broken Link