VDB
EN

PYSEC-2026-761

Zope Server vulnerable to DoS via header injection

상세

Zope is a Web application server for Linux. Zope versions 2.0 through 2.5.1 b1 are vulnerable to a denial of service attack, caused by a vulnerability that occurs when using the "through the Web code" capability. A remote attacker could inject malicious headers into a response to cause the vulnerable system to crash.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / zope
최초 영향 버전: 2.0.0 수정 버전: 2.4.4b2
수정 pip install --upgrade 'zope>=2.4.4b2'

참고