Apache: >> Mod Python Security Vulnerabilities
Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie.
CVSS Score
7.2
EPSS Score
0.0
Published
2006-03-09
The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL.
CVSS Score
7.5
EPSS Score
0.227
Published
2005-05-02
mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.
CVSS Score
5.0
EPSS Score
0.107
Published
2004-12-31
Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.
CVSS Score
5.0
EPSS Score
0.027
Published
2004-03-03
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.
CVSS Score
5.0
EPSS Score
0.059
Published
2003-12-15
mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous functions from the imported module.
CVSS Score
7.5
EPSS Score
0.046
Published
2002-05-16