VIM prior to 6.3 and gVim prior to 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vim development group vim 5.6 |
||
vim development group vim 5.7 |
||
vim development group vim 5.8 |
||
vim development group vim 6.3.044 |
||
vim development group vim 5.2 |
||
vim development group vim 5.3 |
||
vim development group vim 6.2 |
||
vim development group vim 6.3.011 |
||
vim development group vim 5.4 |
||
vim development group vim 5.5 |
||
vim development group vim 6.3.025 |
||
vim development group vim 6.3.030 |
||
vim development group vim 5.0 |
||
vim development group vim 5.1 |
||
vim development group vim 6.0 |
||
vim development group vim 6.1 |