CVE-2009-0367
Wesnoth 1.4.x and 1.5 < 1.5.11 - Remote Code Execution via Python AI Module Sandbox Escape
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-0367. PoCs published by Wesnoth.
AI-analyzed exploit summary This exploit leverages a design error in Wesnoth to execute arbitrary Python code via the `threading._sys.modules['os']` bypass. It spawns a command (e.g., opening Firefox) to demonstrate remote code execution.
Description
The Python AI module in Wesnoth 1.4.x and 1.5 before 1.5.11 allows remote attackers to escape the sandbox and execute arbitrary code by using a whitelisted module that imports an unsafe module, then using a hierarchical module name to access the unsafe module through the whitelisted module.
Exploits (1)
This exploit leverages a design error in Wesnoth to execute arbitrary Python code via the `threading._sys.modules['os']` bypass. It spawns a command (e.g., opening Firefox) to demonstrate remote code execution.