Vim 'PySys_SetArgv' Remote Command Execution Vulnerability

Bugtraq ID: 33447
Class: Design Error
CVE: CVE-2009-0316
Remote: Yes
Local: No
Published: Jan 26 2009 12:00AM
Updated: Mar 29 2010 07:52PM
Credit: James Vega
Vulnerable: VIM Development Group VIM 7.2.10
VIM Development Group VIM 7.1.314
VIM Development Group VIM 7.1.300
VIM Development Group VIM 7.1.299
VIM Development Group VIM 7.1.298
VIM Development Group VIM 7.2c.002
VIM Development Group VIM 7.2a.13
VIM Development Group VIM 7.2a.10
VIM Development Group VIM 7.2
VIM Development Group VIM 7.1
VIM Development Group VIM 7.0
+ Mandriva Linux Mandrake 2007.1 x86_64
+ Mandriva Linux Mandrake 2007.1
+ Mandriva Linux Mandrake 2007.1
+ Mandriva Linux Mandrake 2007.0 x86_64
+ Mandriva Linux Mandrake 2007.0 x86_64
+ Mandriva Linux Mandrake 2007.0
+ Mandriva Linux Mandrake 2007.0
+ Ubuntu Ubuntu Linux 7.04 sparc
+ Ubuntu Ubuntu Linux 7.04 powerpc
+ Ubuntu Ubuntu Linux 7.04 i386
+ Ubuntu Ubuntu Linux 7.04 amd64
+ Ubuntu Ubuntu Linux 6.10 sparc
+ Ubuntu Ubuntu Linux 6.10 powerpc
+ Ubuntu Ubuntu Linux 6.10 i386
+ Ubuntu Ubuntu Linux 6.10 amd64
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux ES 3
Red Hat Enterprise Linux AS 4
Red Hat Enterprise Linux AS 3
Red Hat Enterprise Linux 5 Server
Mandriva Linux Mandrake 2009.0 x86_64
Mandriva Linux Mandrake 2009.0
Mandriva Linux Mandrake 2008.1 x86_64
Mandriva Linux Mandrake 2008.1
Mandriva Linux Mandrake 2008.0 x86_64
Mandriva Linux Mandrake 2008.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 4.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Apple Mac OS X Server 10.5.8
Apple Mac OS X 10.5.8
Not Vulnerable: VIM Development Group VIM 7.2.45


 

Privacy Statement
Copyright 2010, SecurityFocus