Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Bitmessage PyBitmessage version v0.6.2 (and introduced in or after commit 8ce72d8d2d25973b7064b1cf76a6b0b3d62f0ba0) contains a Eval injection vulnerability in main program, file src/messagetypes/__init__.py function constructObject that can result in Code Execution. This attack appears to be exploitable via remote attacker using a malformed message which must be processed by the victim - e.g. arrive from any sender on bitmessage network. This vulnerability appears to have been fixed in v0.6.3.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bitmessage PyBitmessage 代码注入漏洞
Vulnerability Description
Bitmessage PyBitmessage是一个加密分散通信协议。 Bitmessage PyBitmessage 0.6.2版本和commit 8ce72d8d2d25973b7064b1cf76a6b0b3d62f0ba0及之后的版本中的src/messagetypes/__init__.py文件的‘constructObject’函数存在安全漏洞。远程攻击者可借助畸形的消息利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A