6.8 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
25.3%
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
marc.info/?l=bugtraq&m=110313588125609&w=2
www.gentoo.org/security/en/glsa/glsa-200412-10.xml
www.redhat.com/support/errata/RHSA-2005-010.html
www.redhat.com/support/errata/RHSA-2005-036.html
bugzilla.fedora.us/show_bug.cgi?id=2343
exchange.xforce.ibmcloud.com/vulnerabilities/18503
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9571