CVE-2007-2438

Опубликовано: 02 мая 2007

Источник: debian

EPSS Низкий

Описание

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
vim	fixed	1:7.1-022+1		package
vim	not-affected		sarge	package

Примечания

Exploitable through modelines, needs to be used with care in any case

EPSS

Процентиль: 88%

0.03505

Низкий

Связанные уязвимости

CVE-2007-2438

ubuntu

почти 19 лет назад

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

CVE-2007-2438

redhat

почти 19 лет назад

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

CVE-2007-2438

nvd

почти 19 лет назад

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

GHSA-x2f5-352x-j9w7

github

почти 4 года назад

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

ELSA-2007-0346

oracle-oval

почти 19 лет назад

ELSA-2007-0346: Moderate: vim security update (MODERATE)

EPSS

Процентиль: 88%

0.03505

Низкий