Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol.

References

• https://nvd.nist.gov/vuln/detail/CVE-2009-0668
• https://exchange.xforce.ibmcloud.com/vulnerabilities/52377
• http://mail.zope.org/pipermail/zope-announce/2009-August/002220.html
• http://pypi.python.org/pypi/ZODB3/3.8.2#whats-new-in-zodb-3-8-2
• https://web.archive.org/web/20151023102330/http://secunia.com/advisories/36204
• https://web.archive.org/web/20151023102336/http://secunia.com/advisories/36205
• https://web.archive.org/web/20200229152709/http://www.securityfocus.com/bid/35987