EUVD-2019-5819

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2017-17087

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the group ownership of the...

Out-of-bounds Write

Brandy is vulnerable to an out-of-bounds write. This is caused by the fileioopenout function in fileio.c receiving a malicious string via crafted BASIC source code...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Vim vulnerabilities (USN-5147-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5147-1 advisory. It was discovered that Vim incorrectly handled permissions on the .swp file. A local attacker could possibly use this issue to...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2020-2193)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.2 : vim (EulerOS-SA-2020-2193)

According to the version of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the...

Information Disclosure

vim is vulnerable to information disclosure. The fileio.c sets the group ownership of a .swp file to the editor's primary group, allowing local users to obtain confidential information by leveraging an applicable group membership...

EulerOS 2.0 SP5 : vim (EulerOS-SA-2020-1138)

According to the version of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the group ownershi...

EulerOS 2.0 SP2 : vim (EulerOS-SA-2019-2462)

According to the version of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the group ownershi...

Brandy Buffer Overflow Vulnerability

Brandy is a Basic V interpreter. A buffer overflow vulnerability exists in the 'fileioopenin' function of the fileio.c file in Brandy version 1.20.1. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting i...

CVE-2019-14662

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenout in fileio.c via crafted BASIC source code...

DEBIAN-CVE-2019-14662

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenout in fileio.c via crafted BASIC source code...

Stack overflow

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenout in fileio.c via crafted BASIC source code...

Stack overflow

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenin in fileio.c via crafted BASIC source code...

UBUNTU-CVE-2019-14662

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenout in fileio.c via crafted BASIC source code...

CVE-2019-14663

Brandy 1.20.1 contains a stack-based buffer overflow in fileio_openin (fileio.c) triggered by crafted BASIC source code. This is documented across multiple sources (NVD/NASL/Red Hat and CNVD variants) with CVE-2019-14663; affected component is Brandy’s BASIC interpreter path in fileio_openin. The...

CVE-2019-14662

Brandy 1.20.1 has a stack-based buffer overflow in fileioopenout in fileio.c via crafted BASIC source code...

Design/Logic Flaw

fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the group ownership of the original file, which allows local users to obtain sensitive information by leveraging an applicable group membership, as demonstrated by...

CVE-2017-17087

fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary group which may be different from the group ownership of the original file, which allows local users to obtain sensitive information by leveraging an applicable group membership, as demonstrated by...

CVE-2017-17087

The CVE-2017-17087 issue affects Vim, where fileio.c before 8.0.1263 creates a .swp file and assigns its group to the editor’s primary group, which may differ from the original file’s group. This can allow local users to access sensitive information, as demonstrated by mismatched ownership exampl...