Gregory Trubetskoy mod_python Imported Module Access Vulnerability

Gregory Trubetskoy mod_python Imported Module Access Vulnerability

Solution:
Javier Quinteros <jquinte@fadu.uba.ar> has suggested that including the following line at the top of sensitive modules will prevent direct access:

__auth__ = {}

An updated version is available:

Gregory Trubetskoy mod_python 2.7

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.1

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.2

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.3

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.4

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.5

Conectiva mod_python-2.7.8-1U70_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/mod_python-2.7.8-1U70_1cl .i386.rpm

Conectiva mod_python-2.7.8-1U8_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/mod_python-2.7.8-1U8_1cl.i3 86.rpm

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Gregory Trubetskoy mod_python 2.7.6

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz

Red Hat mod_python-2.7.8-1.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/mod_python-2.7.8-1.i386.rpm

Red Hat mod_python-2.7.8-1.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/mod_python-2.7.8-1.ia64.rpm

Gregory Trubetskoy mod_python 2.7.7

Gregory Trubetskoy mod_python-2.7.8.tgz
http://www.modpython.org/dist/mod_python-2.7.8.tgz