The vulnerability in the findfile.c component of the Vim text editor allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the findfile.c component of the Vim text editor is related to the improper handling of CTR-W f when the file name is absent. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

Buffer Over-read in function grab_file_name

Description Buffer Over-read in function grabfilename at findfile.c:1947 vim version git log commit 31ad32a325cc31f0f2bdd530c68bfb856a2187c5 HEAD - master, tag: v8.2.4949, origin/master, origin/HEAD POC ./vim -u NONE -i NONE -n -m -X -Z -e -s -S /mnt/share/max/fuzz/poc/vim/poch5s.dat -c :qa!...