CVE-2010-3492 Detail Current Description The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections.

View Analysis Description Analysis Description The asyncore module in Python before 3.2 does not properly handle unsuccessful calls to the accept function, and does not have accompanying documentation describing how daemon applications should handle unsuccessful calls to the accept function, which makes it easier for remote attackers to conduct denial of service attacks that terminate these applications via network connections. Severity CVSS Version 3.x CVSS Version 2.0



CVSS 3.x Severity and Metrics:

NIST: NVD Base Score: N/A NVD score not yet provided. CVSS 2.0 Severity and Metrics:



NIST: NVD Base Score: 5.0 MEDIUM Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P) Weakness Enumeration CWE-ID CWE Name Source NVD-CWE-Other Other NIST Known Affected Software Configurations Switch to CPE 2.2 CPEs loading, please wait. Denotes Vulnerable Software

Are we missing a CPE here? Please let us know.

Change History 8 change records found show changes Modified Analysis 10/28/2019 8:56:18 PM Action Type Old Value New Value Changed CPE Configuration Record truncated, showing 500 of 1917 characters.

View Entire Change Record

OR *cpe:2.3:a:python:python:0.9.0:*:*:*:*:*:*:* *cpe:2.3:a:python:python:0.9.1:*:*:*:*:*:*:* *cpe:2.3:a:python:python:1.2:*:*:*:*:*:*:* *cpe:2.3:a:python:python:1.3:*:*:*:*:*:*:* *cpe:2.3:a:python:python:1.5.2:*:*:*:*:*:*:* *cpe:2.3:a:python:python:1.6:*:*:*:*:*:*:* *cpe:2.3:a:python:python:1.6.1:*:*:*:*:*:*:* *cpe:2.3:a:python:python:2.0:*:*:*:*:*:*:* *cpe:2.3:a:python:python:2.0.1:*:*:*:*:*:*:* *cpe:2.3:a:python:python:2.1:*:*:*:*:*:*:* *c OR *cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions up to (including) 2.7 *cpe:2.3:a:python:python:*:*:*:*:*:*:*:* versions from (including) 3.0 up to (excluding) 3.1.2



Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:215 No Types Assigned



http://www.mandriva.com/security/advisories?name=MDVSA-2010:215 Third Party Advisory



Changed Reference Type http://www.mandriva.com/security/advisories?name=MDVSA-2010:216 No Types Assigned



http://www.mandriva.com/security/advisories?name=MDVSA-2010:216 Third Party Advisory



Changed Reference Type http://www.openwall.com/lists/oss-security/2010/09/09/6 No Types Assigned



http://www.openwall.com/lists/oss-security/2010/09/09/6 Mailing List, Third Party Advisory



Changed Reference Type http://www.openwall.com/lists/oss-security/2010/09/11/2 No Types Assigned



http://www.openwall.com/lists/oss-security/2010/09/11/2 Mailing List, Third Party Advisory



Changed Reference Type http://www.openwall.com/lists/oss-security/2010/09/22/3 No Types Assigned



http://www.openwall.com/lists/oss-security/2010/09/22/3 Mailing List, Third Party Advisory



Changed Reference Type http://www.openwall.com/lists/oss-security/2010/09/24/3 No Types Assigned



http://www.openwall.com/lists/oss-security/2010/09/24/3 Mailing List, Third Party Advisory



Changed Reference Type https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12111 No Types Assigned



https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12111 Third Party Advisory



CPE Deprecation Remap 10/25/2019 7:54:01 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:python:python:2.7:*:*:*:*:*:*:*



OR *cpe:2.3:a:python:python:2.7.0:*:*:*:*:*:*:*



CPE Deprecation Remap 10/25/2019 7:53:58 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:python:python:2.6:*:*:*:*:*:*:*



OR *cpe:2.3:a:python:python:2.6.0:*:*:*:*:*:*:*



CPE Deprecation Remap 10/25/2019 7:53:55 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:python:python:2.5:*:*:*:*:*:*:*



OR *cpe:2.3:a:python:python:2.5.0:*:*:*:*:*:*:*



CPE Deprecation Remap 10/25/2019 7:53:53 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:python:python:2.4:*:*:*:*:*:*:*



OR *cpe:2.3:a:python:python:2.4.0:*:*:*:*:*:*:*



CPE Deprecation Remap 10/25/2019 7:53:51 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:python:python:2.3:*:*:*:*:*:*:*



OR *cpe:2.3:a:python:python:2.3.0:*:*:*:*:*:*:*



CVE Modified by MITRE 9/18/2017 9:31:24 PM Action Type Old Value New Value Added Reference https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12111 [No Types Assigned]



Removed Reference http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12111 [No Types Assigned]



Initial CVE Analysis 10/20/2010 3:24:00 PM Action Type Old Value New Value Quick Info CVE Dictionary Entry:

CVE-2010-3492

NVD Published Date:

10/19/2010

NVD Last Modified:

10/28/2019

Source:

MITRE

