Ubuntu Update For Vim Vulnerability USN-463-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-463-1

Solution

Please Install the Updated Packages.

Insight

Tomas Golembiovsky discovered that some vim commands were accidentally allowed in modelines. By tricking a user into opening a specially crafted file in vim, an attacker could execute arbitrary code with user privileges.

Affected

vim vulnerability on Ubuntu 6.10 , Ubuntu 7.04

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-May/000535.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-2438

CVSS	Base Score: 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for apt USN-2348-1
Ubuntu Update for curl USN-1721-1
Ubuntu Update for bind9 USN-1518-1
Ubuntu Update for eglibc USN-1396-1
Ubuntu Update for Firefox 3.0 and Xulrunner 1.9 vulnerabilities USN-895-1

Ubuntu Update for vim vulnerability USN-463-1

Take action and discover your vulnerabilities