CVE-2009-0668
Summary
| CVE | CVE-2009-0668 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-08-07 19:30:00 UTC |
| Updated | 2017-08-17 01:29:00 UTC |
| Description | Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol. |
Risk And Classification
Problem Types: CWE-94 | NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Zope | Zodb | 2.10.9 | All | All | All |
| Application | Zope | Zodb | 2.11.4 | All | All | All |
| Application | Zope | Zodb | 2.8.11 | All | All | All |
| Application | Zope | Zodb | 2.9.11 | All | All | All |
| Application | Zope | Zodb | 3.1 | All | All | All |
| Application | Zope | Zodb | 3.1.1 | All | All | All |
| Application | Zope | Zodb | 3.2 | All | All | All |
| Application | Zope | Zodb | 3.2.4 | All | All | All |
| Application | Zope | Zodb | 3.3 | All | All | All |
| Application | Zope | Zodb | 3.3.3 | All | All | All |
| Application | Zope | Zodb | 3.4 | All | All | All |
| Application | Zope | Zodb | 3.4.1 | All | All | All |
| Application | Zope | Zodb | 3.5 | All | All | All |
| Application | Zope | Zodb | 3.6 | All | All | All |
| Application | Zope | Zodb | 3.7 | All | All | All |
| Application | Zope | Zodb | 3.8.0 | All | All | All |
| Application | Zope | Zodb | 2.10.9 | All | All | All |
| Application | Zope | Zodb | 2.11.4 | All | All | All |
| Application | Zope | Zodb | 2.8.11 | All | All | All |
| Application | Zope | Zodb | 2.9.11 | All | All | All |
| Application | Zope | Zodb | 3.1 | All | All | All |
| Application | Zope | Zodb | 3.1.1 | All | All | All |
| Application | Zope | Zodb | 3.2 | All | All | All |
| Application | Zope | Zodb | 3.2.4 | All | All | All |
| Application | Zope | Zodb | 3.3 | All | All | All |
| Application | Zope | Zodb | 3.3.3 | All | All | All |
| Application | Zope | Zodb | 3.4 | All | All | All |
| Application | Zope | Zodb | 3.4.1 | All | All | All |
| Application | Zope | Zodb | 3.5 | All | All | All |
| Application | Zope | Zodb | 3.6 | All | All | All |
| Application | Zope | Zodb | 3.7 | All | All | All |
| Application | Zope | Zodb | 3.8.0 | All | All | All |
| Application | Zope | Zodb | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Zope Object Database ZEO Network Protocol Multiple Security Vulnerabilities | BID | www.securityfocus.com | |
| 56827 | OSVDB | osvdb.org | |
| [Zope-Annce] CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities | MLIST | mail.zope.org | |
| Python Package Index : ZODB3 3.8.2 | CONFIRM | pypi.python.org | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Zope ZODB Two Vulnerabilities - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| Zope Object Database Two Vulnerabilities - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.