Published: 25/10/2014 Updated: 18/12/2014

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Bottle 0.10.x prior to 0.10.12, 0.11.x prior to 0.11.7, and 0.12.x prior to 0.12.6 does not properly limit content types, which allows remote malicious users to bypass intended access restrictions via an accepted Content-Type followed by a ; (semi-colon) and a Content-Type that would not be accepted, as demonstrated in YouCompleteMe to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bottlepy bottle 0.10.6
bottlepy bottle 0.10.4
bottlepy bottle 0.11.5
bottlepy bottle 0.11.3
bottlepy bottle 0.12.4
bottlepy bottle 0.12.2
bottlepy bottle 0.12.0
bottlepy bottle 0.10.2
bottlepy bottle 0.10.1
bottlepy bottle 0.10.0
bottlepy bottle 0.11.7
bottlepy bottle 0.10.11
bottlepy bottle 0.10.10
bottlepy bottle 0.10.9
bottlepy bottle 0.10.8
bottlepy bottle 0.10.7
bottlepy bottle 0.11.2
bottlepy bottle 0.11.1
bottlepy bottle 0.11.0
bottlepy bottle 0.12.5
bottlepy bottle 0.10.5
bottlepy bottle 0.10.3
bottlepy bottle 0.11.6
bottlepy bottle 0.11.4
bottlepy bottle 0.12.3
bottlepy bottle 0.12.1

Debian Bug report logs - #746322 python-bottle: JSON content-type not restrictive enough (CVE-2014-3137) Package: python-bottle; Maintainer for python-bottle is Federico Ceratto <federico@debianorg>; Source for python-bottle is src:python-bottle (PTS, buildd, popcon) Reported by: Federico Ceratto <federicoceratto@gmail ...

CWE-20 https://github.com/defnull/bottle/issues/616 https://bugzilla.redhat.com/show_bug.cgi?id=1093255 http://www.openwall.com/lists/oss-security/2014/05/01/15 http://www.debian.org/security/2014/dsa-2948 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746322 https://nvd.nist.gov

CVE-2014-3137

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect