9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.007 Low
EPSS
Percentile
78.7%
VIM (VIsual editor iMproved) is a version of the vi editor.
A bug was found in the way VIM processes modelines. If a user with
modelines enabled opens a text file with a carefully crafted modeline,
arbitrary commands may be executed as the user running VIM. The Common
Vulnerabilities and Exposures project has assigned the name CAN-2005-2368
to this issue.
Users of VIM are advised to upgrade to these updated packages, which
resolve this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | s390 | vim-common | < 6.3.046-0.30E.4 | vim-common-6.3.046-0.30E.4.s390.rpm |
RedHat | any | x86_64 | vim-enhanced | < 6.3.046-0.30E.4 | vim-enhanced-6.3.046-0.30E.4.x86_64.rpm |
RedHat | any | s390 | vim-common | < 6.3.046-0.40E.7 | vim-common-6.3.046-0.40E.7.s390.rpm |
RedHat | any | i386 | vim-enhanced | < 6.0-7.22 | vim-enhanced-6.0-7.22.i386.rpm |
RedHat | any | ia64 | vim-enhanced | < 6.0-7.22 | vim-enhanced-6.0-7.22.ia64.rpm |
RedHat | any | i386 | vim-enhanced | < 6.3.046-0.30E.4 | vim-enhanced-6.3.046-0.30E.4.i386.rpm |
RedHat | any | i386 | vim-x11 | < 6.0-7.22 | vim-X11-6.0-7.22.i386.rpm |
RedHat | any | ppc | vim-enhanced | < 6.3.046-0.40E.7 | vim-enhanced-6.3.046-0.40E.7.ppc.rpm |
RedHat | any | s390x | vim-common | < 6.3.046-0.40E.7 | vim-common-6.3.046-0.40E.7.s390x.rpm |
RedHat | any | ia64 | vim-common | < 6.0-7.22 | vim-common-6.0-7.22.ia64.rpm |