vim 6.3 prior to 6.3.082, with modelines enabled, allows external user-assisted malicious users to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vim development group vim 6.3.081 |
||
vim development group vim 6.3 |
||
vim development group vim 6.3.011 |
||
vim development group vim 6.3.025 |
||
vim development group vim 6.3.030 |
||
vim development group vim 6.3.044 |