CVE-2002-0687
Zope Server vulnerable to DoS via header injection in pypi/zope
Identifiers
GHSA-vwrc-g9q6-f675, CVE-2002-0687
Package Slug
pypi/zope
Vulnerability
Zope Server vulnerable to DoS via header injection
Description
The "through the web code" capability for Zope 2.0 through 2.5.1 b1 allows untrusted users to shut down the Zope server via certain headers.
Affected Versions
All versions starting from 2.0.0 before 2.4.4b2, all versions starting from 2.5.0 before 2.5.1b2
Solution
Upgrade to versions 2.4.4b2, 2.5.1b2 or above.
Last Modified
2024-02-13
| source |