| Name | CVE-2006-1095 |
| Description | Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie. |
| Source | CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
only version 3.2.7 is vulnerable, 3.2.8 is out
currently 3.1.3 is in Debian; very unlikely that 3.2.7 will be packaged