CVE-2007-5741

N/A Unknown

Published: November 07, 2007 Modified: April 23, 2026

Description

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the (1) statusmessages or (2) linkintegrity module, which the module unpickles and executes.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/42071

Source: cve@mitre.org

http://osvdb.org/42072

Source: cve@mitre.org

http://plone.org/about/security/advisories/cve-2007-5741

Source: cve@mitre.org

http://secunia.com/advisories/27530

Source: cve@mitre.org

Patch Vendor Advisory

http://secunia.com/advisories/27559

Source: cve@mitre.org

http://www.debian.org/security/2007/dsa-1405

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/483343/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/26354

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2007/3754

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/38288

Source: cve@mitre.org

http://osvdb.org/42071