Race condition in ZEO/StorageServer.py in Zope Object Database (ZODB) prior to 3.10.0 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, a related issue to CVE-2010-3492.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zope zodb 2.10.9 |
||
zope zodb 2.11.4 |
||
zope zodb 3.8.0 |
||
zope zodb 3.5 |
||
zope zodb 3.6 |
||
zope zodb 3.4.1 |
||
zope zodb 3.4 |
||
zope zodb 2.9.11 |
||
zope zodb 3.9.0b5 |
||
zope zodb 3.9.0b3 |
||
zope zodb 3.7 |
||
zope zodb 3.1.1 |
||
zope zodb 3.1 |
||
zope zodb 3.8.6 |
||
zope zodb 3.9.0 |
||
zope zodb 3.8.2 |
||
zope zodb 3.8.1 |
||
zope zodb 3.8 |
||
zope zodb 3.3.3 |
||
zope zodb 3.3 |
||
zope zodb 2.8.11 |
||
zope zodb 3.9.0b4 |
||
zope zodb 3.9.0b1 |
||
zope zodb 3.9.0b2 |
||
zope zodb 3.2.4 |
||
zope zodb 3.2 |
||
zope zodb 3.9.0c1 |
||
zope zodb |