Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2712

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-2712
Last Modified 30 Oct 2012 10:58:20
Published 16 Jun 2008 05:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2712

Summary

Vim 7.1.314, 6.4, and other versions allows user-assisted remote attackers to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using (1) filetype.vim, (3) xpm.vim, (4) gzip_vim, and (5) netrw. NOTE: the originally reported version was 7.1.314, but the researcher actually found this set of issues in 7.1.298. NOTE: the zipplugin issue (originally vector 2 in this identifier) has been subsumed by CVE-2008-3075.

Vulnerable Systems

Application

  • Vim 6.4

  • Vim 7.1.314


References

CONFIRM - https://issues.rpath.com/browse/RPL-2622

XF - vim-scripts-command-execution(43083)

VUPEN - ADV-2009-0904

VUPEN - ADV-2009-0033

VUPEN - ADV-2008-2780

VUPEN - ADV-2008-1851

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0004.html

UBUNTU - USN-712-1

SECTRACK - 1020293

BID - 31681

BID - 29715

BUGTRAQ - 20090401 VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim

BUGTRAQ - 20080811 rPSA-2008-0247-1 gvim vim vim-minimal

BUGTRAQ - 20080614 Re: Collection of Vulnerabilities in Fully Patched Vim 7.1

BUGTRAQ - 20080613 Collection of Vulnerabilities in Fully Patched Vim 7.1

REDHAT - RHSA-2008:0617

REDHAT - RHSA-2008:0580

MISC - http://www.rdancer.org/vulnerablevim.html

MLIST - [oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075

MLIST - [oss-security] 20080616 CVE Id request: vim

MANDRIVA - MDVSA-2008:236

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0247

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-001.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-457.htm

CONFIRM - http://support.apple.com/kb/HT4077

CONFIRM - http://support.apple.com/kb/HT3216

SREASON - 3951

SECUNIA - 34418

SECUNIA - 33410

SECUNIA - 32222

SECUNIA - 30731

BUGTRAQ - 20080701 Re: Collection of Vulnerabilities in Fully Patched Vim 7.1

SUSE - SUSE-SR:2009:007

APPLE - APPLE-SA-2010-03-29-1

APPLE - APPLE-SA-2008-10-09

REDHAT - RHSA-2008:0618

SECUNIA - 32864

SECUNIA - 32858

Related Patches

Apple 2008-10-09 Security Update 2008-007 Client (Leopard)

Novell SUSE 2009:6025 gvim security update for SLE 10 SP2 i586


Last Updated: 27 May 2016 10:49:48