Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0409

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0409
Last Modified 10 Sep 2008 03:07:55
Published 18 Jun 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0409

Summary

vim (aka gvim) allows local users to modify files being edited by other users via a symlink attack on the backup and swap files, when the victim is editing the file in a world writable directory.

Vulnerable Systems

Application

  • Vim Development Group Vim 5.7


References

CALDERA - CSSA-2001-014.0

XF - vim-tmp-symlink(6628)

SUSE - SuSE-SA:2001:12


Last Updated: 27 May 2016 10:36:15