Remote Code Execution Vulnerability in mod_python by The Apache Software Foundation
CVE-2002-0185

Currently unrated

Key Information:

Vendor: Apache
Status: Mod Python
Vendor: CVE Published:; 16 May 2002

Summary

The mod_python module, specifically versions 2.7.6 and earlier, contains a vulnerability that permits a module indirectly imported by a published module to be invoked by an attacker. This flaw enables remote attackers to call potentially harmful functions from the imported module, posing serious security risks to applications that utilize this module. It is essential for users of mod_python to apply updates or patches to ensure their systems remain secure.

References

http://www.iss.net/security_center/static/8997.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/4656

vdb-entryx_refsource_BID

http://www.modpython.org/pipermail/mod_python/2002-April/...

x_refsource_MISC

Timeline

Vulnerability published
May 16, 2002
Vulnerability Reserved
Apr 19, 2002