← Zuruck zu CVEs
CVE-2019-13404
N/ABeschreibung
The MSI installer for Python through 2.7.16 on Windows defaults to the C:\Python27 directory, which makes it easier for local users to deploy Trojan horse code. (This also affects old 3.x releases before 3.5.) NOTE: the vendor's position is that it is the user's responsibility to ensure C:\Python27 access control or choose a different directory, because backwards compatibility requires that C:\Python27 remain the default for 2.7.x
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht7/8/2019
Zuletzt geandert11/21/2024
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
microsoft:windowspython:python
Schwachen (CWE)
CWE-552
Referenzen
https://docs.python.org/2/faq/windows.html(cve@mitre.org)
https://docs.python.org/2/faq/windows.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.