Python · Python · CVE-2013-1753
**Name of the Vulnerable Software and Affected Versions**
Python versions 3.4 and earlier
**Description**
The issue allows remote attackers to cause a denial of service, specifically memory consumption, via a crafted HTTP request. This is due to a problem in the gzip decode function within the xmlrpc client library.
**Recommendations**
For versions 3.4 and earlier, consider disabling the `gzip decode` function as a temporary workaround until a patch is available. Restrict access to the xmlrpc client library to minimize the risk of exploitation. Avoid using the xmlrpc client library with untrusted HTTP requests until the issue is resolved.