Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.34 views

Oracle: Security Advisory (ELSA-2008-0580)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.1AI score0.15044EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 5 : vim (ELSA-2008-0580)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0580 advisory. - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup - fix...

9.3CVSS6.5AI score0.15044EPSS
Exploits7References7
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.36 views

openSUSE Security Update : gvim (gvim-561)

The VI Improved editor vim was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python cod...

9.3CVSS7.5AI score0.15044EPSS
Exploits6References13
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.28 views

Mandriva Update for vim MDVSA-2008:236 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDVSA-2008:236 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

9.3CVSS0.8AI score0.15044EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2009/03/07 12:0 a.m.35 views

Debian: Security Advisory (DSA-1733-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.4AI score0.15044EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2009/03/04 12:0 a.m.40 views

Debian DSA-1733-1 : vim - several vulnerabilities

Several vulnerabilities have been found in vim, an enhanced vi editor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-2712 Jan Minar discovered that vim did not properly sanitise inputs before invoking the execute or system functions inside vim...

9.3CVSS5.6AI score0.15044EPSS
Exploits5References13
Prion
Prion
added 2009/02/21 10:30 p.m.26 views

Information disclosure

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a ZIP archive and possibly 2 the filename of the first file in a ZIP archive, which is not properly...

9.3CVSS7.4AI score0.15044EPSS
Exploits3References20Affected Software2
NVD
NVD
added 2009/02/21 10:30 p.m.20 views

CVE-2008-3074

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a tar archive and possibly 2 the filename of the first file in a tar archive, which is not properly...

9.3CVSS7.3AI score0.03841EPSS
Exploits2References21
OSV
OSV
added 2009/02/21 10:30 p.m.9 views

CVE-2008-3074

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a tar archive and possibly 2 the filename of the first file in a tar archive, which is not properly...

7.3AI score
Exploits0References24
CVE
CVE
added 2009/02/21 10:0 p.m.80 views

CVE-2008-3074

CVE-2008-3074 affects Vim 7.0–7.2 (including 7.2a.10) via the shellescape vulnerability in the Vim TAR plugin (tar.vim, v.10–v.22). The root cause is linked to an incomplete fix for CVE-2008-2712, sharing the same underlying issue as CVE-2008-3075. The described impact allows user‑assisted attack...

9.3CVSS8AI score0.03841EPSS
Exploits2References21Affected Software2
OpenVAS
OpenVAS
added 2008/12/02 12:0 a.m.59 views

Vim Shell Command Injection Vulnerability (Windows)

This host is installed with Vim and is prone to Command Injection Vulnerability. OpenVAS Vulnerability Test $Id: secpodvimshellcmdinjectionvulnwin900411.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Vim Shell Command Injection Vulnerability Windows Authors: Sujit Ghosal Copyright: Copyright C...

9.3CVSS0.6AI score0.15044EPSS
Exploits4References2
seebug.org
seebug.org
added 2008/11/28 12:0 a.m.36 views

Vim多个插件字符转义任意命令执行漏洞

BUGTRAQ ID: 32462,32463 CVECAN ID: CVE-2008-3074,CVE-2008-3074 VIM是一款免费开放源代码文本编辑器,可使用在Unix/Linux操作系统下。 VIM的tar.vim和zip.vim插件中shellescape函数没有正确地转义所有项(“!”字符)。如果用户使用tar.vim插件打开了TAR文档的话,就会导致以运行Vim用户的权限执行任意指令。 VIM Development Group VIM 7.1 VIM Development Group VIM 7.0 RedHat ------...

9.3CVSS1.8AI score0.03841EPSS
Exploits2
Oracle linux
Oracle linux
added 2008/11/25 12:0 a.m.41 views

vim security update

7.0.109-4.4z - fix netrw 7.0.109-4.3z - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup 7.0.109-4.2z - fix some issues with netrw and remote file editing caused by the CVE-2008-2712 patch 7.0.109-4.1z ...

9.3CVSS1.5AI score0.15044EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2008/11/25 12:0 a.m.39 views

RHEL 5 : vim (RHSA-2008:0580)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0580 advisory. - vim format string flaw CVE-2007-2953 - vim: command execution via scripts not sanitizing inputs to execute and system CVE-2008-2712 - Vim...

9.3CVSS7.4AI score0.15044EPSS
Exploits6References15
Rows per page
Query Builder