17 matches found
Oracle: Security Advisory (ELSA-2008-0580)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SLES9: Security update for vim and gvim
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: vim gvim For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017978 within the Su...
SLES9: Security update for vim and gvim
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: vim gvim For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017978 within the Su...
SuSE9 Security Update : vim and gvim (YOU Patch Number 11722)
This update of Vim addresses a format-string bug in 'helptags'. This bug can be exploited to execute code with the privileges of the user running Vim. CVE-2007-2953 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
vim security update
CentOS Errata and Security Advisory CESA-2008:0617 Updated vim packages that fix various security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Vim Visual editor IMproved is an...
Moderate: Red Hat Security Advisory: vim security update
Updated vim packages that fix various security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Vim Visual editor IMproved is an updated and improved version of the vi editor. Severa...
RHEL 5 : vim (RHSA-2008:0580)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0580 advisory. - vim format string flaw CVE-2007-2953 - vim: command execution via scripts not sanitizing inputs to execute and system CVE-2008-2712 - Vim...
vim security update
6.3.046-1.el47.5z - remove duplicate vimtutor manpage 6.3.046-1.el47.4z - fix netrw 6.3.046-1.el47.3z - add fix for CVE-2008-4101 6.3.046-1.el46.2z - don't add empty line when editing files with netrw 6.3.046-1.el46.1z - fix erroneous quoting in CVE-2008-2712 patch 6.3.046-1.el46.z - add fix for...
vim security update
7.0.109-4.4z - fix netrw 7.0.109-4.3z - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup 7.0.109-4.2z - fix some issues with netrw and remote file editing caused by the CVE-2008-2712 patch 7.0.109-4.1z ...
FreeBSD Ports: vim, vim-lite, vim-ruby, vim6, vim6-ruby
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian: Security Advisory (DSA-1364-2)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1364-1 (vim)
The remote host is missing an update to vim announced via advisory DSA 1364-1. OpenVAS Vulnerability Test $Id: deb13641.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1364-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
SuSE 10 Security Update : vim and gvim (ZYPP Patch Number 4095)
This update of Vim addresses a format-string bug in 'helptags'. This bug can be exploited to execute code with the privileges of the user running Vim. CVE-2007-2953 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
openSUSE 10 Security Update : gvim (gvim-4092)
This update of Vim addresses a format-string bug in 'helptags'. This bug can be exploited to execute code with the privileges of the user running Vim. CVE-2007-2953 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
Vim HelpTags命令远程格式串处理漏洞
BUGTRAQ ID: 25095 CVECAN ID: CVE-2007-2953 VIM是一款免费开放源代码文本编辑器,可使用在Unix/Linux操作系统下。 VIM的src/excmds.c文件中的helptagsone函数存在格式串处理漏洞,本地攻击者可能利用此漏洞提升自己的权限。 如果攻击者受骗对恶意数据运行了helptags命令的话,攻击者就可以通过特制的帮助文件执行任意代码。 VIM Development Group VIM 7.1 VIM Development Group VIM 6.4 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2007-2953
CVE-2007-2953 is a format-string vulnerability in Vim’s helptags processor (helptags_one in src/ex_cmds.c) that allowed remote code execution when a user processed a crafted help file tag. Affected are Vim 6.4 and earlier and 7.x up to 7.1; the issue arises from format string specifiers being int...
FreeBSD : vim -- Command Format String Vulnerability (1ed03222-3c65-11dc-b3d3-0016179b2dd5)
A Secunia Advisory reports : A format string error in the 'helptagsone' function in src/excmds.c when running the 'helptags' command can be exploited to execute arbitrary code via specially crafted help files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...