CVE-2011-2765

Published: Aug 20, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/irmen/Pyro3/commit/554e095a62c4412c91f981e72fd34a936ac2bf1e

x_refsource_CONFIRM

https://pythonhosted.org/Pyro/12-changes.html

x_refsource_CONFIRM

https://bugs.debian.org/631912

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-2765

Description

Affected Products

References