CVE-2011-2765

Published August 20th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.

irmen/Pyro3

Pyro 3.x (old version - unmaintained - use Pyro4 instead)

GitHub