Short Name |
HTTP:MISC:PYTHON-ZLIB-BO |
---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Python Zlib Remote Buffer Overflow |
Release Date |
2012/12/03 |
Update Number |
2207 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
This signature detects attempts to exploit a known vulnerability against Python version 2.5.2 and earlier. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Python zlib module is prone to a remote buffer-overflow vulnerability because the library fails to properly sanitize user-supplied data. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running an application that relies on the affected library. Failed exploit attempts will result in a denial-of-service condition. This issue affects Python 2.5.2; other versions may also be vulnerable.