cbcvebase.
CVE-2009-0544
published 2009-02-12

CVE-2009-0544: Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key…

PriorityP357critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
11.52%
95.5th percentile
Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.

Affected

1 ranges
VendorProductVersion rangeFixed in
pycryptoarc2

Detection & IOCsextracted from sources · hover to see the quote

versionPyCrypto ARC2 module 2.0.1
commandkey = "x" * 16384; ARC2.new(key, ARC2.MODE_ECB)
  • Trigger condition is an ARC2 key length greater than 128 bytes (e.g., 16384 bytes); monitor for ARC2 cipher instantiation with oversized keys (keylength > 128) in PyCrypto 2.0.1
  • Vulnerable code path is in Crypto.Cipher.ARC2 module; look for imports or usage of this module in applications running PyCrypto 2.0.1
  • The ARC2 implementation did not correctly check the key length; any code path supplying attacker-controlled key material to ARC2.new() is exploitable
  • ·Fix is available via upstream git commits; patch at the referenced commitdiff URLs addresses the key-length validation bypass
  • ·Exploitation requires that attacker-controlled data reaches the ARC2 key parameter; only PyCrypto version 2.0.1 is confirmed vulnerable

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.