package vim
clone 435401
retitle -1 Format string vulnerability possibly allows arbitrary code execution
tag -1 security
severity -1 grave
found -1 1:7.0-122+1etch2
thanks
On Fri, Aug 17, 2007 at 11:06:21PM +0200, Moritz Muehlenhoff wrote:
> James Vega wrote:
> > Thanks for taking a look at this.
James Vega wrote:
> > FrSirt states that this has been fixed as of version 7.0.235[0]. The current
> > version in unstable is 7.1
> >
> > The version in stable is currently vulnerable.
> >
> > The version in unstable does not appear to be vulnerable, as none of the
> > exploits I tried against i
package vim
found 435401 1:7.0-122+1etch2
notfound 435401 1:7.1-022+1
thanks
On Mon, Aug 06, 2007 at 01:17:11PM +0200, Taylor, Christopher PO2 USN (NCTS La
Maddalena) wrote:
> FrSirt states that this has been fixed as of version 7.0.235[0]. The current
> version in unstable is 7.1
>
> The versio
Processing commands for [EMAIL PROTECTED]:
> package vim
Ignoring bugs not assigned to: vim
> found 435401 1:7.0-122+1etch2
Bug#435401: sandbox for vim allows attackers to execute shell commands and
write files via modelines
Bug marked as found in version 1:7.0-122+1etch2.
> notfound 435401 1:7
FrSirt states that this has been fixed as of version 7.0.235[0]. The current
version in unstable is 7.1
The version in stable is currently vulnerable.
The version in unstable does not appear to be vulnerable, as none of the
exploits I tried against it were successful.
[0]http://www.frsirt.co
5 matches
Mail list logo
