|
CVE Reference: CVE-2002-1377
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2002-1377
|
|
Description:
vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.
|
|
CVE Status:
Entry
|
|
References:
XF
SUNALERT
REDHAT
MISC
http://www.guninski.com/vim1.html
MANDRAKE
FULLDISC
CONECTIVA
BUGTRAQ
BID
6384
|
|
|
Return to the previous page.
|
