A remote attacker with ability to control URL, passed to the application, can use CRLF sequences to split the HTTP request and inject arbitrary HTTP headers into request, made by the application. The vulnerability exists within urllib2 implementation for Python 2.x and urllib3 implementation for Python 3.x when processing the path component of a URL that lacks the "?" character within the () call. The vulnerability allows a remote attacker to perform CRLF injection attacks. Now this command should return the default which you configured above.CVSSv3.1: 4.3 This is also a great way to easily switch those priorities around once they have been set.Ĭheck you default version, again… python -V Now when we list the python priorities we see see 3.7 is higher that 2.7: update-alternatives -config python We have just set 3.7 (2) to have a priority great than 2.7 (1). To set your version priorities, with 3.7 being the high priority: update-alternatives -install /usr/bin/python python /usr/bin/python2.7 1 update-alternatives -install /usr/bin/python python /usr/bin/python3.7 2 You can list all of the available alternatives installed by running: ls /usr/bin/python* Now it is time configure the priority for the versions of python that we have installed, 2.7 and 3.5/7. Step 1 is to check your current python version: python -V The basic premise is to configure Kali to use python 3.7 at a higher priority to python 2.7 or any other version installed on the system.
#UPDATE PYTHON FROM 2.7.2 TO 2.7.9 INSTALL#
This was tested on a completely fresh install of Kali Linux with no other alterations made prior. I have covered changing the default version of python in Debian, however for those looking to Google for a quick fix on Kali, I hope that this reaches you well.
0 kommentar(er)
