• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Vim Modelines Arbitrary Command Execution Variant Vulnerability

Solution:
SGI has released advisory 20050102-01-U to address various issues in SGI Advanced Linux Environment 3. This advisory includes updated SGI ProPack 3 Service Pack 3 packages (patch10132.tar.gz). Please see the referenced advisory for more information.

Gentoo has released updates to address this issue. These updates may be applied by issuing the following commands for Vim and gVim respectively:

(vim)
emerge --sync
emerge --ask --oneshot --verbose ">=app-editors/vim-6.3-r2"

(gVim)
emerge --sync
emerge --ask --oneshot --verbose ">=app-editors/gvim-6.3-r2"

The vendor has addressed this issue in Vim 6.3.045 and later releases. An updated release may be obtained by download the latest 6.3 release from the vim.org downloads page or through CVS.

OpenPKG has released an advisory dealing with this issue. Please see the referenced advisory for more information.

Ubuntu has released an advisory dealing with this issue. Please see the referenced advisory for more information.

Red Hat has released advisory RHSA-2005:010-05 to address this issue in Red Hat Enterprise Linux. Please see the advisory in Web references for more information.

Mandrake has released advisory MDKSA-2005:003 to address this vulnerability. Please see the attached advisory for details on obtaining and applying fixes.

Avaya has released advisory ASA-2005-020 to document the affected versions of Avaya products. Please see the referenced advisory for further information.

Fedora Legacy has released advisory FLSA:2343 to adress this issue for various Red Hat Linux releases and Fedora Core 1. Please see the referenced advisory for further information.

IPCop has released version 1.4.6 to address this issue.


IPCop IPCop 1.4.1

• IPCop IPCop 1.4.6
  http://ipcop.org/modules.php?op=modload&name=Downloads&file=index&req= viewdownload&cid=3&orderby=dateD

IPCop IPCop 1.4.2

• IPCop IPCop 1.4.6
  http://ipcop.org/modules.php?op=modload&name=Downloads&file=index&req= viewdownload&cid=3&orderby=dateD

IPCop IPCop 1.4.4

• IPCop IPCop 1.4.6
  http://ipcop.org/modules.php?op=modload&name=Downloads&file=index&req= viewdownload&cid=3&orderby=dateD

IPCop IPCop 1.4.5

• IPCop IPCop 1.4.6
  http://ipcop.org/modules.php?op=modload&name=Downloads&file=index&req= viewdownload&cid=3&orderby=dateD

SGI ProPack 3.0

• SGI patch10132.tar.gz
  ftp://patches.sgi.com/support/free/security/patches/ProPack/3/patch101 32.tar.gz

VIM Development Group VIM 5.0

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.1

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.2

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.3

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.4

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.5

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.6

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.7

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 5.8

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 6.0

• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 6.1

• Mandrake vim-common-6.1-34.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.1-34.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.1-34.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.1-34.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.1-34.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.1-34.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.1-34.2.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.1-34.2.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• RedHat vim-common-6.1-18.7x.2.3.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/vim-common-6. 1-18.7x.2.3.legacy.i386.rpm


• RedHat vim-common-6.1-29.3.legacy.i386.rpm
  RedHat Linux 9
  http://download.fedoralegacy.org/redhat/9/updates/i386/vim-common-6.1- 29.3.legacy.i386.rpm


• RedHat vim-enhanced-6.1-18.7x.2.3.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/vim-enhanced- 6.1-18.7x.2.3.legacy.i386.rpm


• RedHat vim-enhanced-6.1-29.3.legacy.i386.rpm
  RedHat Linux 9
  http://download.fedoralegacy.org/redhat/9/updates/i386/vim-enhanced-6. 1-29.3.legacy.i386.rpm


• RedHat vim-minimal-6.1-18.7x.2.3.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/vim-minimal-6 .1-18.7x.2.3.legacy.i386.rpm


• RedHat vim-minimal-6.1-29.3.legacy.i386.rpm
  RedHat Linux 9
  http://download.fedoralegacy.org/redhat/9/updates/i386/vim-minimal-6.1 -29.3.legacy.i386.rpm


• RedHat vim-X11-6.1-18.7x.2.3.legacy.i386.rpm
  RedHat Linux 7.3
  http://download.fedoralegacy.org/redhat/7.3/updates/i386/vim-minimal-6 .1-18.7x.2.3.legacy.i386.rpm


• RedHat vim-X11-6.1-29.3.legacy.i386.rpm
  RedHat Linux 9
  http://download.fedoralegacy.org/redhat/9/updates/i386/vim-X11-6.1-29. 3.legacy.i386.rpm


• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 6.2

• Mandrake vim-common-6.2-11.1.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.2-11.1.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.2-14.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.2-14.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.3-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-common-6.3-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.2-11.1.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.2-11.1.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.2-14.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.2-14.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.3-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-enhanced-6.3-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.2-11.1.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.2-11.1.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.2-14.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.2-14.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.3-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-minimal-6.3-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.2-11.1.92mdk.amd64.rpm
  Mandrake Linux 9.2/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.2-11.1.92mdk.i586.rpm
  Mandrake Linux 9.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.2-14.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.2-14.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.3-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake vim-X11-6.3-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/X86_64
  http://www.mandrakesecure.net/en/ftp.php


• RedHat vim-common-6.2.532-1.3.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/vim-common-6.2. 532-1.3.legacy.i386.rpm


• RedHat vim-enhanced-6.2.532-1.3.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/vim-enhanced-6. 2.532-1.3.legacy.i386.rpm


• RedHat vim-minimal-6.2.532-1.3.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/vim-minimal-6.2 .532-1.3.legacy.i386.rpm


• RedHat vim-X11-6.2.532-1.3.legacy.i386.rpm
  RedHat Fedora Core 1
  http://download.fedoralegacy.org/fedora/1/updates/i386/vim-X11-6.2.532 -1.3.legacy.i386.rpm


• VIM Development Group Vim 6.3.045
  http://www.vim.org/download.php

VIM Development Group VIM 6.3 .030

• OpenPKG vim-6.3.30-2.2.1.src.rpm
  ftp://ftp.openpkg.org/release/2.2/UPD/vim-6.3.30-2.2.1.src.rpm

VIM Development Group VIM 6.3 .025

• Ubuntu kvim_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/kvim_6.3-025+1ub untu2.1_amd64.deb


• Ubuntu kvim_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/kvim_6.3-025+1ub untu2.1_i386.deb


• Ubuntu kvim_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/kvim_6.3-025+1ub untu2.1_powerpc.deb


• Ubuntu vim-common_6.3-025+1ubuntu2.1_all.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.3-025+1 ubuntu2.1_all.deb


• Ubuntu vim-doc_6.3-025+1ubuntu2.1_all.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-doc_6.3-025+1ubu ntu2.1_all.deb


• Ubuntu vim-gnome_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.3-025+1u buntu2.1_amd64.deb


• Ubuntu vim-gnome_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.3-025+1u buntu2.1_i386.deb


• Ubuntu vim-gnome_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.3-025+1u buntu2.1_powerpc.deb


• Ubuntu vim-gtk_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.3-025+ 1ubuntu2.1_amd64.deb


• Ubuntu vim-gtk_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.3-025+ 1ubuntu2.1_i386.deb


• Ubuntu vim-gtk_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.3-025+ 1ubuntu2.1_powerpc.deb


• Ubuntu vim-lesstif_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-lesstif_6.3- 025+1ubuntu2.1_amd64.deb


• Ubuntu vim-lesstif_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-lesstif_6.3- 025+1ubuntu2.1_i386.deb


• Ubuntu vim-lesstif_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-lesstif_6.3- 025+1ubuntu2.1_powerpc.deb


• Ubuntu vim-perl_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.3-025 +1ubuntu2.1_amd64.deb


• Ubuntu vim-perl_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.3-025 +1ubuntu2.1_i386.deb


• Ubuntu vim-perl_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.3-025 +1ubuntu2.1_powerpc.deb


• Ubuntu vim-python_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.3-0 25+1ubuntu2.1_amd64.deb


• Ubuntu vim-python_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.3-0 25+1ubuntu2.1_i386.deb


• Ubuntu vim-python_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.3-0 25+1ubuntu2.1_powerpc.deb


• Ubuntu vim-tcl_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.3-025+ 1ubuntu2.1_amd64.deb


• Ubuntu vim-tcl_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.3-025+ 1ubuntu2.1_i386.deb


• Ubuntu vim-tcl_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.3-025+ 1ubuntu2.1_powerpc.deb


• Ubuntu vim_6.3-025+1ubuntu2.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.3-025+1ubuntu2 .1_amd64.deb


• Ubuntu vim_6.3-025+1ubuntu2.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.3-025+1ubuntu2 .1_i386.deb


• Ubuntu vim_6.3-025+1ubuntu2.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.3-025+1ubuntu2 .1_powerpc.deb

VIM Development Group VIM 6.3 .011

• OpenPKG vim-6.3.11-2.1.1.src.rpm
  ftp://ftp.openpkg.org/release/2.1/UPD/vim-6.3.11-2.1.1.src.rpm