KLA11144
ACE vulnerability in Python
Updated: 09/10/2018
CVSS
?
7.5
Detect date
?
11/17/2017
Severity
?
Critical
Description

A heap-based buffer overflow vulnerability was found in Python 2.7. By exploiting this vulnerability malicious users possibly can execute arbitrary code. This vulnerability can be exploited remotely via an integer overflow in the PyString_DecodeEscape function in stringobject.c.

Affected products

Python 2.7 earlier than 2.7.14

Solution

Update to the latest version
Download Python 2.7.14

Original advisories

Issue30657

Impacts
?
ACE 
[?]
Related products
Python
CVE-IDS
?

CVE-2017-1000158