Lucene search
K

15 matches found

OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.34 views

Oracle: Security Advisory (ELSA-2008-0580)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.1AI score0.15044EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 5 : vim (ELSA-2008-0580)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0580 advisory. - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup - fix...

9.3CVSS6.5AI score0.15044EPSS
Exploits7References7
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.36 views

openSUSE Security Update : gvim (gvim-561)

The VI Improved editor vim was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python cod...

9.3CVSS7.5AI score0.15044EPSS
Exploits6References13
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.28 views

Mandriva Update for vim MDVSA-2008:236 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDVSA-2008:236 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

9.3CVSS0.8AI score0.15044EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2009/03/07 12:0 a.m.35 views

Debian: Security Advisory (DSA-1733-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.4AI score0.15044EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2009/03/04 12:0 a.m.40 views

Debian DSA-1733-1 : vim - several vulnerabilities

Several vulnerabilities have been found in vim, an enhanced vi editor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-2712 Jan Minar discovered that vim did not properly sanitise inputs before invoking the execute or system functions inside vim...

9.3CVSS5.6AI score0.15044EPSS
Exploits5References13
NVD
NVD
added 2009/02/21 10:30 p.m.28 views

CVE-2008-3075

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a ZIP archive and possibly 2 the filename of the first file in a ZIP archive, which is not properly...

9.3CVSS7.3AI score0.04258EPSS
Exploits1References20
Prion
Prion
added 2009/02/21 10:30 p.m.28 views

Information disclosure

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a tar archive and possibly 2 the filename of the first file in a tar archive, which is not properly...

9.3CVSS7.4AI score0.15044EPSS
Exploits3References21Affected Software2
OSV
OSV
added 2009/02/21 10:30 p.m.2 views

DEBIAN-CVE-2008-3075

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted attackers to execute arbitrary code via the "!" exclamation point shell metacharacter in 1 the filename of a ZIP archive and possibly 2 the filename of the first file in a ZIP archive, which is not properly...

9.3CVSS5.5AI score0.04258EPSS
Exploits1References1
CVE
CVE
added 2009/02/21 10:0 p.m.86 views

CVE-2008-3075

CVE-2008-3075 affects Vim 7.0–7.2 (including 7.2a.10) via the shellescape vulnerability in the ZIP plugin (zipPlugin.vim v.11–v.21). An attacker can exploit the exclamation mark metacharacter in a ZIP filename (and possibly the first file inside) to execute arbitrary code; root cause tied to an i...

9.3CVSS8AI score0.04258EPSS
Exploits1References20Affected Software2
OpenVAS
OpenVAS
added 2008/12/02 12:0 a.m.59 views

Vim Shell Command Injection Vulnerability (Windows)

This host is installed with Vim and is prone to Command Injection Vulnerability. OpenVAS Vulnerability Test $Id: secpodvimshellcmdinjectionvulnwin900411.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Vim Shell Command Injection Vulnerability Windows Authors: Sujit Ghosal Copyright: Copyright C...

9.3CVSS0.6AI score0.15044EPSS
Exploits4References2
Oracle linux
Oracle linux
added 2008/11/25 12:0 a.m.41 views

vim security update

7.0.109-4.4z - fix netrw 7.0.109-4.3z - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup 7.0.109-4.2z - fix some issues with netrw and remote file editing caused by the CVE-2008-2712 patch 7.0.109-4.1z ...

9.3CVSS1.5AI score0.15044EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2008/11/25 12:0 a.m.39 views

RHEL 5 : vim (RHSA-2008:0580)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0580 advisory. - vim format string flaw CVE-2007-2953 - vim: command execution via scripts not sanitizing inputs to execute and system CVE-2008-2712 - Vim...

9.3CVSS7.4AI score0.15044EPSS
Exploits6References15
UbuntuCve
UbuntuCve
added 2008/06/16 9:41 p.m.41 views

CVE-2008-2712

Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using 1 filetype.vim, 3 xpm.vim, 4 gzipvim, and 5 netrw. NOTE: the...

9.3CVSS6AI score0.15044EPSS
Exploits0References3
Prion
Prion
added 2008/06/16 9:41 p.m.32 views

Design/Logic Flaw

Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using 1 filetype.vim, 3 xpm.vim, 4 gzipvim, and 5 netrw. NOTE: the...

9.3CVSS7.3AI score0.15044EPSS
Exploits1References40Affected Software2
Rows per page
Query Builder