CVE-2005-2368

EPSS 1.5%

vim - modeline exploits

發布日:2005/7/26修改日:2026/4/28

也稱為:DEBIAN-CVE-2005-2368

描述

vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels.

受影響套件(2)

Debian/vimfrom 0, < 1:6.3-085+1
Debian/vimfrom 0, < 1:6.3-085+0.0etch1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2368