QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-2953

Back to search

CVE-2007-2953

Published: Jul 31, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.

VendorProductVersions

n/a

n/a

affected
n/a

References

25095
vdb-entry
x_refsource_BID
26822
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:168
vendor-advisory
x_refsource_MANDRIVA
26522
third-party-advisory
x_refsource_SECUNIA
26285
third-party-advisory
x_refsource_SECUNIA
26594
third-party-advisory
x_refsource_SECUNIA
25941
third-party-advisory
x_refsource_SECUNIA
32858
third-party-advisory
x_refsource_SECUNIA
33410
third-party-advisory
x_refsource_SECUNIA
USN-505-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2008:0580
vendor-advisory
x_refsource_REDHAT
20070730 FLEA-2007-0036-1 vim vim-minimal gvim
mailing-list
x_refsource_BUGTRAQ
ADV-2007-2687
vdb-entry
x_refsource_VUPEN
ADV-2009-0904
vdb-entry
x_refsource_VUPEN
ADV-2009-0033
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:6463
vdb-entry
signature
x_refsource_OVAL
2007-0026
vendor-advisory
x_refsource_TRUSTIX
DSA-1364
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2007:018
vendor-advisory
x_refsource_SUSE
26653
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11549
vdb-entry
signature
x_refsource_OVAL
MDVSA-2008:236
vendor-advisory
x_refsource_MANDRIVA
26674
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0617
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now