RHEL 6 / 7 : vim (RHSA-2016:2972)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2972 advisory. Vim Vi IMproved is an updated and improved version of the vi editor. Security Fixes: A vulnerability was found in vim in how certain modeline...

Scientific Linux Security Update : vim on SL6.x, SL7.x i386/x86_64 (20161221)

Security Fixes : - A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim. CVE-2016-1248 %NASLMINLEVEL 70300 C Tenable...

CVE-2016-1248

A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim. Mitigation Disabling modeline support in .vimrc by adding "set...

DEBIAN-CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

ALPINE-CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

UBUNTU-CVE-2016-1248

vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened...

[SECURITY] [DSA 3722-1] vim security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3722-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 22, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3722-1 (vim - security update)

Florian Larysch and Bram Moolenaar discovered that vim, an enhanced vi editor, does not properly validate values for the the filetype, syntax and keymap options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened. OpenVAS Vulnerability Test...

PT-2019-3260

Name of the Vulnerable Software and Affected Versions Vim versions prior to 8.1.1365 Neovim versions prior to 0.3.6 Description The issue is related to the lack of filtering in the :source! command in a modeline, which allows remote attackers to execute arbitrary OS commands. This can lead to...

PT-2016-4670 · Vim +5 · Vim +5

Name of the Vulnerable Software and Affected Versions: vim versions prior to 8.0.0056 Description: The issue arises from improper validation of values for the filetype, syntax, and keymap options. This can lead to the execution of arbitrary code when a file with a specially crafted modeline is...

MDVA-2008:059 : drakx-kbd-mouse-x11

An updated XFdrake is available that corrects a number of bugs: - never write a ModeLine when using the fglrx driver bug 30934 - if the EDID gives a valid EISAID, a valid 16/10 preferred resolution, but no HorizSync/VertRefresh, use a generic flat panel HorizSync/VertRefresh needed for...

Mandriva Update for drakx-kbd-mouse-x11 MDVA-2008:059 (drakx-kbd-mouse-x11)

Check for the Version of drakx-kbd-mouse-x11 OpenVAS Vulnerability Test Mandriva Update for drakx-kbd-mouse-x11 MDVA-2008:059 drakx-kbd-mouse-x11 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Mandriva Update for vim MDKSA-2007:101 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDKSA-2007:101 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Mandriva Update for vim MDKSA-2007:101 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDKSA-2007:101 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Ubuntu 6.10 / 7.04 : vim vulnerability (USN-463-1)

Tomas Golembiovsky discovered that some vim commands were accidentally allowed in modelines. By tricking a user into opening a specially crafted file in vim, an attacker could execute arbitrary code with user privileges. Note that Tenable Network Security has extracted the preceding description...