>> Vim Filename Handling Shell Command Injection Vulnerabilities
Title : Vim Filename Handling Shell Command Injection Vulnerabilities VUPEN ID : VUPEN/ADV-2008-1851 CVE ID : CVE-2008-2712 - CVE-2008-3074 - CVE-2008-3075 CWE ID : CWE-20
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-06-17
Technical Description
Multiple vulnerabilities have been identified in Vim, which could be exploited by attackers to bypass security restrictions and execute arbitrary code. These issues are caused by errors in the "filetype.vim", "xpm.vim", "xpm2.vim", "tar.vim", "zip.vim", "gzip.vim", and "netrw.vim" scripts that do not validate filenames before being passed to the "execute" command, which could be exploited by attackers to inject and execute arbitrary commands by tricking a user into opening a malicious file.
