Zope Object Database ZEO Network Protocol Multiple Security Vulnerabilities

Zope Object Database (ZODB) is prone to multiple security vulnerabilities, including an arbitrary Python code-execution issue and an authentication-bypass issue.

Attackers can exploit these issues to execute arbitrary Python code or bypass authentication mechanisms on affected ZODB storage servers. Successful attacks may compromise the database or the underlying computer.

Versions prior to ZODB 3.8.2 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus