• info
• discussion
• exploit
• solution
• references

Vim HelpTags Command Remote Format String Vulnerability

Solution:
The vendor has released patch 7.1.039 to address this issue. Please see the references for more information.


Ubuntu Ubuntu Linux 6.10 powerpc

• Ubuntu vim-common_7.0-035+1ubuntu5.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.0-035+1 ubuntu5.2_powerpc.deb

Mandriva Linux Mandrake 2008.0

• Mandriva vim-common-7.2.065-9.2mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 7.04 i386

• Ubuntu vim-common_7.0-164+1ubuntu7.2_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.0-164+1 ubuntu7.2_i386.deb

Mandriva Linux Mandrake 2009.0 x86_64

• Mandriva vim-common-7.2.065-9.2mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2008.1 x86_64

• Mandriva vim-common-7.2.065-9.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2008.1

• Mandriva vim-common-7.2.065-9.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 6.10 i386

• Ubuntu vim-common_7.0-035+1ubuntu5.2_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.0-035+1 ubuntu5.2_i386.deb

Ubuntu Ubuntu Linux 7.04 amd64

• Ubuntu vim-common_7.0-164+1ubuntu7.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.0-164+1 ubuntu7.2_amd64.deb

Ubuntu Ubuntu Linux 6.06 LTS i386

• Ubuntu vim-common_6.4-006+2ubuntu6.1_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.4-006+2 ubuntu6.1_i386.deb

VIM Development Group VIM 7.1

• VIM Development Group 7.1.039
  ftp://ftp.vim.org/pub/vim/patches/7.1/7.1.039

Mandriva Linux Mandrake 2009.0

• Mandriva vim-common-7.2.065-9.2mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 7.04 powerpc

• Ubuntu vim-common_7.0-164+1ubuntu7.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.0-164+1 ubuntu7.2_powerpc.deb

VMWare ESX Server 2.5.5

• VMWare esx-2.5.5-161312-upgrade.tar.gz
  http://download3.vmware.com/software/esx/esx-2.5.5-161312-upgrade.tar. gz

MandrakeSoft Corporate Server 3.0

• Mandriva vim-common-7.2.065-9.2.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-9.3.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.2.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-9.3.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.2.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-9.3.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.2.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-9.3.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/

VMWare ESX Server 3.0.3

• VMWare ESX303-200903403-SG.zip
  http://download3.vmware.com/software/vi/ESX303-200903403-SG.zip

MandrakeSoft Corporate Server 4.0 x86_64

• Mandriva vim-common-7.2.065-8.2.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-common-7.2.065-8.3.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-8.2.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-enhanced-7.2.065-8.3.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-8.2.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-minimal-7.2.065-8.3.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-8.2.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva vim-X11-7.2.065-8.3.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/