RedHatRHSA-2007:0346(RHSA-2007:0346) Moderate: vim security update
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.015 Low
EPSS
Percentile
85.6%
VIM (VIsual editor iMproved) is a version of the vi editor.
An arbitrary command execution flaw was found in the way VIM processes
modelines. If a user with modelines enabled opened a text file containing
a carefully crafted modeline, arbitrary commands could be executed as the user
running VIM. (CVE-2007-2438)
Users of VIM are advised to upgrade to these updated packages, which
resolve this issue.
Please note: this issue did not affect VIM as distributed with Red Hat
Enterprise Linux 2.1, 3, or 4.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | s390x | vim-x11 | < 7.0.109-3.el5.3 | vim-X11-7.0.109-3.el5.3.s390x.rpm |
| RedHat | 5 | i386 | vim-x11 | < 7.0.109-3.el5.3 | vim-X11-7.0.109-3.el5.3.i386.rpm |
| RedHat | 5 | src | vim | < 7.0.109-3.el5.3 | vim-7.0.109-3.el5.3.src.rpm |
| RedHat | 5 | ppc | vim-x11 | < 7.0.109-3.el5.3 | vim-X11-7.0.109-3.el5.3.ppc.rpm |
| RedHat | 5 | x86_64 | vim-common | < 7.0.109-3.el5.3 | vim-common-7.0.109-3.el5.3.x86_64.rpm |
| RedHat | 5 | x86_64 | vim-minimal | < 7.0.109-3.el5.3 | vim-minimal-7.0.109-3.el5.3.x86_64.rpm |
| RedHat | 5 | i386 | vim-minimal | < 7.0.109-3.el5.3 | vim-minimal-7.0.109-3.el5.3.i386.rpm |
| RedHat | 5 | ppc | vim-minimal | < 7.0.109-3.el5.3 | vim-minimal-7.0.109-3.el5.3.ppc.rpm |
| RedHat | 5 | ppc | vim-common | < 7.0.109-3.el5.3 | vim-common-7.0.109-3.el5.3.ppc.rpm |
| RedHat | 5 | x86_64 | vim-x11 | < 7.0.109-3.el5.3 | vim-X11-7.0.109-3.el5.3.x86_64.rpm |
Related
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.015 Low
EPSS
Percentile
85.6%