Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8172 matches found

FreeBSD
FreeBSDadded 2005/07/25 12:0 a.m.21 views

vim -- vulnerabilities in modeline handling: glob, expand

Georgi Guninski discovered a way to construct Vim modelines that execute arbitrary shell commands. The vulnerability can be exploited by including shell commands in modelines that call the glob or expand functions. An attacker could trick an user to read or edit a trojaned file with modelines...

9.3CVSS7AI score0.02726EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2005/07/13 12:0 a.m.20 views

FreeBSD : vim -- vulnerabilities in modeline handling (bd9fc2bf-5ffe-11d9-a11a-000a95bc6fae)

Ciaran McCreesh discovered news ways in which a VIM modeline can be used to trojan a text file. The patch by Bram Moolenaar reads : Problem: Unusual characters in an option value may cause unexpected behavior, especially for a modeline. Ciaran McCreesh Solution: Don't allow setting termcap option...

7.2CVSS5.3AI score0.0041EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2005/02/22 12:0 a.m.28 views

RHEL 4 : vim (RHSA-2005:036)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:036 advisory. VIM Vi IMproved is an updated and improved version of the vi screen-based editor. Ciaran McCreesh discovered a modeline vulnerability in VIM...

7.2CVSS6.1AI score0.0041EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2005/02/18 3:22 p.m.1 views

security flaw

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS5.8AI score0.0036EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2005/02/18 3:22 p.m.33 views

Low: Red Hat Security Advisory: vim security update

Updated vim packages that fix a security vulnerability are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM Vi IMproved is an updated and improved version of the vi screen-based editor. The Debian Security Audit Project discovered ...

4.6CVSS5.8AI score0.0036EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2005/02/18 12:0 a.m.31 views

RHEL 2.1 / 3 : vim (RHSA-2005:122)

Updated vim packages that fix a security vulnerability are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM Vi IMproved is an updated and improved version of the vi screen-based editor. The Debian Security Audit Project discovered ...

4.6CVSS5.3AI score0.0036EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2005/02/15 9:36 a.m.2 views

security flaw

VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as 1 termcap, 2 printdevice, 3 titleold, 4 filetype, 5 syntax, 6 backupext, 7 keymap, 8 patchmode, or 9 langmenu...

7.2CVSS6AI score0.0041EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2005/02/15 9:36 a.m.33 views

Low: Red Hat Security Advisory: vim security update

Updated vim packages that fix security vulnerabilities are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM Vi IMproved is an updated and improved version of the vi screen-based editor. Ciaran McCrees...

7.2CVSS6AI score0.0041EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2005/02/15 9:36 a.m.3 views

security flaw

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS5.8AI score0.0036EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2005/02/03 12:0 a.m.17 views

Mandrake Linux Security Advisory : vim (MDKSA-2005:029)

Javier Fernandez-Sanguino Pena discovered two vulnerabilities in scripts included with the vim editor. The two scripts, 'tcltags' and 'vimspell.sh' created temporary files in an insecure manner which could allow a malicious user to execute a symbolic link attack or to create, or overwrite,...

4.6CVSS5.8AI score0.0036EPSS
Exploits0References1
Cvelist
Cvelistadded 2005/01/29 5:0 a.m.16 views

CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

6.1AI score0.0036EPSS
Exploits0References8
CVE
CVEadded 2005/01/29 5:0 a.m.87 views

CVE-2005-0069

The CVE concerns vim 6.3, where the scripts tcltags or vimspell.sh can be exploited by a local attacker via a symlink attack on temporary files to overwrite/create arbitrary files. This is described across multiple advisories (e.g., RHSA/RHSA-2005:036, RHSA-2005:122, SUSE CVE-2005-0069) and is ti...

4.6CVSS6.1AI score0.0036EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVEadded 2005/01/29 5:0 a.m.27 views

CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS4.5AI score0.0036EPSS
Exploits0
Exploit DB
Exploit DBadded 2005/01/29 12:0 a.m.23 views

Vim - 'mch_expand_wildcards()' Heap Buffer Overflow

source: https://www.securityfocus.com/bid/30648/info Vim is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker may exploit this issue to execute arbitrary code with the privileges of the user running the...

7.4AI score
Exploits0
Ubuntu
Ubuntuadded 2005/01/19 1:56 a.m.44 views

USN-61-1: vim vulnerabilities

Javier Fernández-Sanguino Peña noticed that the auxillary scripts "tcltags" and "vimspell.sh" created temporary files in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the script either by calling it...

4.6CVSS5.5AI score0.0036EPSS
Exploits0
OSV
OSVadded 2005/01/13 5:0 a.m.5 views

CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

6.1AI score
Exploits0References11
UbuntuCve
UbuntuCveadded 2005/01/13 5:0 a.m.15 views

CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS6AI score0.0036EPSS
Exploits0References2
OSV
OSVadded 2005/01/13 5:0 a.m.1 views

DEBIAN-CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS6.7AI score0.0036EPSS
Exploits0References1
NVD
NVDadded 2005/01/13 5:0 a.m.10 views

CVE-2005-0069

The 1 tcltags or 2 vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files...

4.6CVSS6.2AI score0.0036EPSS
Exploits0References8
UbuntuCve
UbuntuCveadded 2005/01/10 5:0 a.m.20 views

CVE-2004-1138

VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as 1 termcap, 2 printdevice, 3 titleold, 4 filetype, 5 syntax, 6 backupext, 7 keymap, 8 patchmode, or 9 langmenu...

7.2CVSS6AI score0.0041EPSS
Exploits0References2
Rows per page
Query Builder