Oval Definition:	oval:org.mitre.oval:def:8354
Revision Date: 2014-01-20 Version: 5 Title: VMware python multiple integer overflows vulnerability in the imageop module Description: Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow context-dependent attackers to break out of the Python VM and execute arbitrary code via large integer values in certain arguments to the crop function, leading to a buffer overflow, a different vulnerability than CVE-2007-4965 and CVE-2008-1679. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-4864 Platform(s): VMWare ESX Server 3 VMWare ESX Server 3.5 VMWare ESX Server 4.0 Product(s): Definition Synopsis AND VMWare ESX Server 3.0.3 is installed AND Patch ESX303-201002206-SG is not installed OR VMware ESX Server 3.5.0 is installed AND Patch ESX350-201002402-SG is not installed OR VMware ESX Server 4.0 is installed AND Patch ESX400-200911235-SG is not installed
BACK