Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3294

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2008-3294
Last Modified 05 Aug 2011 12:00:00
Published 24 Jul 2008 02:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2008-3294

Summary

src/configure.in in Vim 5.0 through 7.1, when used for a build with Python support, does not ensure that the Makefile-conf temporary file has the intended ownership and permissions, which allows local users to execute arbitrary code by modifying this file during a time window, or by creating it ahead of time with permissions that prevent its modification by configure.

Vulnerable Systems

Application

  • Vim 5.0

  • Vim 5.1

  • Vim 5.2

  • Vim 5.3

  • Vim 5.4

  • Vim 5.5

  • Vim 5.6

  • Vim 5.7

  • Vim 5.8

  • Vim 6.0

  • Vim 6.1

  • Vim 6.2

  • Vim 6.3

  • Vim 6.4

  • Vim 7.0

  • Vim 7.1


References

VUPEN - ADV-2008-2780

VUPEN - ADV-2008-2146

BID - 31681

BUGTRAQ - 20080725 Re: [Full-disclosure] Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution

BUGTRAQ - 20080718 Re: Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution

BUGTRAQ - 20080717 Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution

CONFIRM - http://support.apple.com/kb/HT3216

SECUNIA - 32222

SECUNIA - 31159

APPLE - APPLE-SA-2008-10-09

Related Patches

Apple 2008-10-09 Security Update 2008-007 Client (Leopard)


Last Updated: 27 May 2016 10:48:08