CVE-2007-2438

EPSS 3.5%

vim - several vulnerabilities

Published: 5/2/2007Modified: 4/28/2026

Description

The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.

Affected packages (3)

Debian/vimfrom 0, < 1:7.1-022+1
Debian/vimfrom 0, < 1:6.3-071+1sarge2
Debian/vimfrom 0, < 1:7.0-122+1etch3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-2438