PRIOn knowledge basePRION:CVE-2008-3075Information disclosure
7.4 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.8%
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the β!β (exclamation point) shell metacharacter in (1) the filename of a ZIP archive and possibly (2) the filename of the first file in a ZIP archive, which is not properly handled by zip.vim in the VIM ZIP plugin (zipPlugin.vim) v.11 through v.21, as demonstrated by the zipplugin and zipplugin.v2 test cases. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2008-2712. NOTE: this issue has the same root cause as CVE-2008-3074. NOTE: due to the complexity of the associated disclosures and the incomplete information related to them, there may be inaccuracies in this CVE description and in external mappings to this identifier.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vim | eq | 7.1.266 | |
| vim | eq | 7.1 | |
| vim | eq | 7.0 | |
| vim | eq | 7.2 | |
| vim | eq | 7.2.9710 | |
| vim | eq | 7.1.314 | |
| zipplugin.vim | eq | .14.0-v | |
| zipplugin.vim | eq | .12.0-v | |
| zipplugin.vim | eq | .18.0-v | |
| zipplugin.vim | eq | .15.0-v |
References
bugs.debian.org/cgi-bin/bugreport.cgi?bug=506919
lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html
secunia.com/advisories/34418
wiki.rpath.com/wiki/Advisories:rPSA-2008-0324
www.mandriva.com/security/advisories?name=MDVSA-2008:236
www.openwall.com/lists/oss-security/2008/07/07/1
www.openwall.com/lists/oss-security/2008/07/07/4
www.openwall.com/lists/oss-security/2008/07/08/12
www.openwall.com/lists/oss-security/2008/07/10/7
www.openwall.com/lists/oss-security/2008/07/13/1
www.openwall.com/lists/oss-security/2008/07/15/4
www.openwall.com/lists/oss-security/2008/08/01/1
www.openwall.com/lists/oss-security/2008/10/15/1
www.openwall.com/lists/oss-security/2008/10/20/2
www.rdancer.org/vulnerablevim.html
www.redhat.com/support/errata/RHSA-2008-0580.html
www.securityfocus.com/bid/32463
bugzilla.redhat.com/show_bug.cgi?id=467432
marc.info/?l=bugtraq&m=121494431426308&w=2
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10246
Related
7.4 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.8%