Threat Encyclopedia

Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

description-logoDescription

The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted XML data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1283 and CVE-2015-2716.

affected-products-logoAffected Applications

Python

CVE References

CVE-2016-4472

Other References

https://bugs.python.org/

Telemetry logoTelemetry