Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2005-2875 — py2play - design error · VulnScope

CVE-2005-2875

py2play - design error

EPSS 1.5%

Description

Py2Play allows remote attackers to execute arbitrary Python code via pickled objects, which Py2Play unpickles and executes.

How to fix CVE-2005-2875

To remediate CVE-2005-2875, upgrade the affected package to a fixed version below.

Debian/py2play—upgrade to 0.1.7-1sarge1 or later
PyPI/py2play—no fix listed

Is CVE-2005-2875 being exploited?

Low — EPSS is 1.5%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 0.1.7-1sarge1
from 0, <= 0.1.8

References (8)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2005-2875
WEBbugs.debian.org/cgi-bin/bugreport.cgi?bug=326976
WEBbugs.gentoo.org/show_bug.cgi?id=103524
WEBweb.archive.org/web/20040824010038/http://home.gna.org/oomadness/fr/slune/index.html

Metadata

Published: 5/1/2022
Modified: 3/9/2026

Also known as:

GHSA-wcpc-f63g-x26qghsa
DSA-856-1dsa
DEBIAN-CVE-2005-2875debian

WEB

web.archive.org/web/20050213041706/http://soya.literati.org

WEBweb.archive.org/web/20161225000907/http://www.securityfocus.com/bid/14864

WEBwww.debian.org/security/2005/dsa-856

WEBwww.gentoo.org/security/en/glsa/glsa-200509-09.xml