Executive Summary
| Summary | |
|---|---|
| Title | vim security update |
| Informations | |||
|---|---|---|---|
| Name | RHSA-2007:0346 | First vendor Publication | 2007-05-09 |
| Vendor | RedHat | Last vendor Modification | 2007-05-09 |
| Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:H/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 7.6 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | High |
| Cvss Expoit Score | 4.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Problem Description: Updated vim packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 3. Problem description: VIM (VIsual editor iMproved) is a version of the vi editor. An arbitrary command execution flaw was found in the way VIM processes modelines. If a user with modelines enabled opened a text file containing a carefully crafted modeline, arbitrary commands could be executed as the user running VIM. (CVE-2007-2438) Users of VIM are advised to upgrade to these updated packages, which resolve this issue. Please note: this issue did not affect VIM as distributed with Red Hat Enterprise Linux 2.1, 3, or 4. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/FAQ_58_10188 5. Bug IDs fixed (http://bugzilla.redhat.com/): 238259 - CVE-2007-2438 vim-7 modeline security issue |
Original Source
| Url : https://rhn.redhat.com/errata/RHSA-2007-0346.html |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:22067 | |||
| Oval ID: | oval:org.mitre.oval:def:22067 | ||
| Title: | ELSA-2007:0346: vim security update (Moderate) | ||
| Description: | The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2007:0346-01 CVE-2007-2438 | Version: | 6 |
| Platform(s): | Oracle Linux 5 | Product(s): | vim |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:9876 | |||
| Oval ID: | oval:org.mitre.oval:def:9876 | ||
| Title: | The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. | ||
| Description: | The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2007-2438 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-04-09 | Name : Mandriva Update for vim MDKSA-2007:101 (vim) File : nvt/gb_mandriva_MDKSA_2007_101.nasl |
| 2009-03-23 | Name : Ubuntu Update for vim vulnerability USN-463-1 File : nvt/gb_ubuntu_USN_463_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1364-1 (vim) File : nvt/deb_1364_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1364-2 (vim) File : nvt/deb_1364_2.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 35488 | Vim Multiple Function modelines Sandbox Restriction Bypass |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2007-0346.nasl - Type : ACT_GATHER_INFO |
| 2007-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-463-1.nasl - Type : ACT_GATHER_INFO |
| 2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_vim-3410.nasl - Type : ACT_GATHER_INFO |
| 2007-09-03 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1364.nasl - Type : ACT_GATHER_INFO |
| 2007-05-25 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0346.nasl - Type : ACT_GATHER_INFO |
| 2007-05-11 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0346.nasl - Type : ACT_GATHER_INFO |
| 2007-05-10 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-101.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:50:39 |
|
