Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-2089. PoCs published by haypo.
AI-analyzed exploit summary This exploit demonstrates a memory corruption vulnerability in the Python 'audioop' module. By calling 'audioop.reverse' with malformed arguments, an attacker can trigger a denial-of-service or potentially execute arbitrary code.
Description
The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.
Exploits (1)
This exploit demonstrates a memory corruption vulnerability in the Python 'audioop' module. By calling 'audioop.reverse' with malformed arguments, an attacker can trigger a denial-of-service or potentially execute arbitrary code.