Ubuntu Update For Vim Vulnerability USN-463-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-463-1

Solution

Please Install the Updated Packages.

Insight

Tomas Golembiovsky discovered that some vim commands were accidentally allowed in modelines. By tricking a user into opening a specially crafted file in vim, an attacker could execute arbitrary code with user privileges.

Affected

vim vulnerability on Ubuntu 6.10 , Ubuntu 7.04

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-May/000535.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-2438
CVSS Base Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for binutils USN-2496-1
Ubuntu Update for apparmor update USN-1039-1
Ubuntu Update for ca-certificates-java USN-1197-8
Ubuntu Update for devhelp, epiphany-browser, midbrowser, yelp update USN-626-2
Ubuntu Update for CUPS update USN-1036-1

Ubuntu Update for vim vulnerability USN-463-1

Take action and discover your vulnerabilities