Vim Security Vulnerabilities and Issues — Vim CVE List

Vim Development GroupVim

8 matches found

CVE•added 2005/01/29 5:0 a.m.•86 views

CVE-2005-0069

The CVE concerns vim 6.3, where the scripts tcltags or vimspell.sh can be exploited by a local attacker via a symlink attack on temporary files to overwrite/create arbitrary files. This is described across multiple advisories (e.g., RHSA/RHSA-2005:036, RHSA-2005:122, SUSE CVE-2005-0069) and is ti...

4.6CVSS6.1AI score0.00081EPSS

CVE•added 2007/05/02 9:0 p.m.•81 views

CVE-2007-2438

CVE-2007-2438 targets Vim’s sandbox, where modeline parsing grants access to dangerous functions (writefile, feedkeys, system), enabling user-assisted execution of shell commands and file writes. The issue affects Vim components exposed to modelines and has been addressed in multiple advisories a...

7.6CVSS6.8AI score0.03505EPSS

CVE•added 2004/09/01 4:0 a.m.•76 views

CVE-2002-1377

CVE-2002-1377 affects Vim 6.0 and 6.1 (and possibly other versions) and is caused by the libcall feature in modelines not being sandboxed, enabling arbitrary command execution when a malicious file is edited (e.g., via mutt). The vulnerability is triggered locally when Opened files contain crafte...

4.6CVSS8.9AI score0.00077EPSS

CVE•added 2007/07/31 10:0 a.m.•69 views

CVE-2007-2953

CVE-2007-2953 is a format-string vulnerability in Vim’s helptags processor (helptags_one in src/ex_cmds.c) that allowed remote code execution when a user processed a crafted help file tag. Affected are Vim 6.4 and earlier and 7.x up to 7.1; the issue arises from format string specifiers being int...

6.8CVSS7.2AI score0.14708EPSS

CVE•added 2005/07/26 4:0 a.m.•63 views

CVE-2005-2368

CVE-2005-2368 affects Vim (pre-6.3.082) where, with modelines enabled, a crafted modeline could cause execution of arbitrary commands via shell metacharacters in fold-related expressions. The security issue has been addressed in multiple advisories (RHSA-2005:745, CentOS/CESA-2005:745-01, MDKSA-2...

9.3CVSS7.1AI score0.01518EPSS

CVE•added 2001/09/18 4:0 a.m.•55 views

CVE-2001-0409

The CVE-2001-0409 vulnerability affects vim (aka gvim). It allows a local attacker to modify files being edited by other users via a symlink attack on swap/backup files when the victim edits a file in a world-writable directory. The underlying issue is a symlink race during edit sessions, enablin...

2.1CVSS6.2AI score0.00378EPSS

CVE•added 2004/12/22 5:0 a.m.•55 views

CVE-2004-1138

CVE-2004-1138 affects Vim and GVim up to version 6.3. A crafted modeline can be executed when a file is viewed with certain options (termcap, printdevice, titleold, filetype, syntax, backupext, keymap, patchmode, langmenu), enabling local command execution with the user’s privileges. Mitigations/...

7.2CVSS6.8AI score0.00067EPSS

CVE•added 2001/09/18 4:0 a.m.•46 views

CVE-2001-0408

CVE-2001-0408 affects Vim (gvim); a crafted file containing VIM control codes can cause arbitrary commands to execute when opening the file. The root cause is Vim interpreting embedded control codes, enabled by the status line option in .vimrc, allowing code execution as the user. Mandrake adviso...

5.1CVSS7.4AI score0.00866EPSS