CVE Vulnerabilities

CVE-2007-2953

Published: Jul 31, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.

Affected Software

Name Vendor Start Version End Version
Vim Vim_development_group 7.1 7.1
Vim Vim_development_group * 6.4
Vim Vim_development_group 7.0 7.0
Vim Vim_development_group 7.1.38 7.1.38

References