pyro@3.10 vulnerabilities

distributed object middleware for Python (IPC/RPC), version 3.x

latest version

3.16
latest non vulnerable version

3.16
first published

13 years ago
latest version published

12 years ago
licenses detected
- MIT
  [0,)
View pyro package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the pyro package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Arbitrary File Overwrite pyro is a Distributed Object Technology system written entirely in Python, that is designed to be very easy to use. Affected versions of this package are vulnerable to Arbitrary File Overwrite. It handled `pid` files in temporary directory locations and was opening the `pid` file as root. An attacker could use this flaw to overwrite arbitrary files via symlinks. How to fix Arbitrary File Overwrite? Upgrade `pyro` to version 3.15 or higher.	[,3.15)

Arbitrary File Overwrite

pyro is a Distributed Object Technology system written entirely in Python, that is designed to be very easy to use.

Affected versions of this package are vulnerable to Arbitrary File Overwrite. It handled pid files in temporary directory locations and was opening the pid file as root. An attacker could use this flaw to overwrite arbitrary files via symlinks.

How to fix Arbitrary File Overwrite?

Upgrade pyro to version 3.15 or higher.

[,3.15)

Go back to all versions of this package

pyro@3.10 vulnerabilities

distributed object middleware for Python (IPC/RPC), version 3.x

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities