Untrusted search path vulnerability in src/if_python.c in the Python interface in Vim prior to 7.2.045 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983), as demonstrated by an erroneous search path for plugin/bike.vim in bicyclerepair.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vim vim 6.1 |
||
vim vim 6.0 |
||
vim vim 5.2 |
||
vim vim 5.1 |
||
vim vim 7.0 |
||
vim vim 6.4 |
||
vim vim 5.6 |
||
vim vim 5.5 |
||
vim vim 3.0 |
||
vim vim 1.22 |
||
vim vim 1.0 |
||
vim vim 6.3 |
||
vim vim 6.2 |
||
vim vim 5.4 |
||
vim vim 5.3 |
||
vim vim |
||
vim vim 7.1 |
||
vim vim 5.8 |
||
vim vim 5.7 |
||
vim vim 5.0 |
||
vim vim 4.0 |