logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2009-0316

Description

Untrusted search path vulnerability in src/if_python.c in the Python interface in Vim before 7.2.045 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983), as demonstrated by an erroneous search path for plugin/bike.vim in bicyclerepair.


Affected Software


CPE Name Name Version
vim:vim vim 6.1
vim:vim vim 6.0
vim:vim vim 5.2
vim:vim vim 5.1
vim:vim vim 7.0
vim:vim vim 6.4
vim:vim vim 5.6
vim:vim vim 5.5
vim:vim vim 3.0
vim:vim vim 1.22
vim:vim vim 1.0
vim:vim vim 6.3
vim:vim vim 6.2
vim:vim vim 5.4
vim:vim vim 5.3
vim:vim vim 7.2
vim:vim vim 7.1
vim:vim vim 5.8
vim:vim vim 5.7
vim:vim vim 5.0
vim:vim vim 4.0

Related