• info
• discussion
• exploit
• solution
• references

Python Pickle Class Constructor Arbitrary Code Execution Vulnerability

Solution:
This issue has been resolved in Python 2.2 through the usage of the ' __safe_for_unpickling__' class attribute.