Published: 26/07/2005 Updated: 11/10/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

vim 6.3 prior to 6.3.082, with modelines enabled, allows external user-assisted malicious users to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vim development group vim 6.3.081
vim development group vim 6.3
vim development group vim 6.3.011
vim development group vim 6.3.025
vim development group vim 6.3.030
vim development group vim 6.3.044

Synopsis vim security update Type/Severity Security Advisory: Low Topic Updated vim packages that fix a security issue are now availableThis update has been rated as having low security impact by the Red HatSecurity Response Team Description VIM (VIsual editor iMproved) is a version of th ...

CWE-78 http://lists.grok.org.uk/pipermail/full-disclosure/2005-July/035402.html http://www.guninski.com/where_do_you_want_billg_to_go_today_5.html http://www.securityfocus.com/bid/14374 http://www.redhat.com/support/errata/RHSA-2005-745.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11302 https://access.redhat.com/errata/RHSA-2005:745 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-2368

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect