Published: 01/12/2017 Updated: 20/02/2022

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

fileio.c in Vim before 8.0.1263 sets the group ownership of a .swp file to the editor's primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an applicable group membership, as demonstrated by /etc/shadow owned by root:shadow mode 0640, but /etc/.shadow.swp owned by root:users mode 0640, a different vulnerability than CVE-2017-1000382.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vim vim
debian debian linux 8.0
debian debian linux 9.0
canonical ubuntu linux 16.04
canonical ubuntu linux 18.04

It was found that the swap file created by vim when opening a file was using the user's primary group instead of the file's group An attacker belonging to the victim's primary group could use this flaw to read the vim swap file ...

CWE-668 https://groups.google.com/d/msg/vim_dev/sRT9BtjLWMk/BRtSXNU4BwAJ https://github.com/vim/vim/commit/5a73e0ca54c77e067c3b12ea6f35e3e8681e8cf8 http://security.cucumberlinux.com/security/details.php?id=166 http://openwall.com/lists/oss-security/2017/11/27/2 https://lists.debian.org/debian-lts-announce/2019/08/msg00003.html https://usn.ubuntu.com/4582-1/https://lists.debian.org/debian-lts-announce/2022/01/msg00003.html https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-17087

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-17087

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect