Vulnerability Description
Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vim Development Group | Vim | <= 6.4 |
References
- ftp://ftp.vim.org/pub/vim/patches/7.1/7.1.039Patch
- http://secunia.com/advisories/25941PatchVendor Advisory
- http://secunia.com/advisories/26285
- http://secunia.com/advisories/26522
- http://secunia.com/advisories/26594
- http://secunia.com/advisories/26653
- http://secunia.com/advisories/26674
- http://secunia.com/advisories/26822
- http://secunia.com/advisories/32858
- http://secunia.com/advisories/33410
- http://secunia.com/secunia_research/2007-66/advisory/PatchVendor Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2009-001.htm
- http://www.attrition.org/pipermail/vim/2007-August/001770.html
- http://www.debian.org/security/2007/dsa-1364
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:168
FAQ
What is CVE-2007-2953?
CVE-2007-2953 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string s...
How severe is CVE-2007-2953?
CVE-2007-2953 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2953?
Check the references section above for vendor advisories and patch information. Affected products include: Vim Development Group Vim.