cvelistv5 - cve-2002-1377

CVE-2002-1377 (GCVE-0-2002-1377)

Vulnerability from cvelistv5 – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:19

Summary

vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/bid/6384	vdb-entryx_refsource_BID
	http://www.redhat.com/support/errata/RHSA-2002-302.html	vendor-advisoryx_refsource_REDHAT
	http://www.guninski.com/vim1.html	x_refsource_MISC
	http://lists.grok.org.uk/pipermail/full-disclosur…	mailing-listx_refsource_FULLDISC
	http://www.redhat.com/support/errata/RHSA-2002-297.html	vendor-advisoryx_refsource_REDHAT
	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=f…	vendor-advisoryx_refsource_SUNALERT
	http://distro.conectiva.com.br/atualizacoes/?id=a…	vendor-advisoryx_refsource_CONECTIVA
	http://www.mandrakesoft.com/security/advisories?n…	vendor-advisoryx_refsource_MANDRAKE
	http://marc.info/?l=bugtraq&m=108077992208690&w=2	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:19:28.975Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "6384",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/6384"
          },
          {
            "name": "RHSA-2002:302",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.guninski.com/vim1.html"
          },
          {
            "name": "20021213 Some vim problems, yet still vim much better than windows",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
          },
          {
            "name": "RHSA-2002:297",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
          },
          {
            "name": "55700",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUNALERT",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
          },
          {
            "name": "CLA-2004:812",
            "tags": [
              "vendor-advisory",
              "x_refsource_CONECTIVA",
              "x_transferred"
            ],
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
          },
          {
            "name": "MDKSA-2003:012",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRAKE",
              "x_transferred"
            ],
            "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
          },
          {
            "name": "20040331 OpenLinux: vim arbitrary commands execution through modelines",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
          },
          {
            "name": "vim-modeline-command-execution(10835)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-12-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2007-11-29T00:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "6384",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/6384"
        },
        {
          "name": "RHSA-2002:302",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.guninski.com/vim1.html"
        },
        {
          "name": "20021213 Some vim problems, yet still vim much better than windows",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
        },
        {
          "name": "RHSA-2002:297",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
        },
        {
          "name": "55700",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUNALERT"
          ],
          "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
        },
        {
          "name": "CLA-2004:812",
          "tags": [
            "vendor-advisory",
            "x_refsource_CONECTIVA"
          ],
          "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
        },
        {
          "name": "MDKSA-2003:012",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRAKE"
          ],
          "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
        },
        {
          "name": "20040331 OpenLinux: vim arbitrary commands execution through modelines",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
        },
        {
          "name": "vim-modeline-command-execution(10835)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1377",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "6384",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/6384"
            },
            {
              "name": "RHSA-2002:302",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
            },
            {
              "name": "http://www.guninski.com/vim1.html",
              "refsource": "MISC",
              "url": "http://www.guninski.com/vim1.html"
            },
            {
              "name": "20021213 Some vim problems, yet still vim much better than windows",
              "refsource": "FULLDISC",
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
            },
            {
              "name": "RHSA-2002:297",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
            },
            {
              "name": "55700",
              "refsource": "SUNALERT",
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
            },
            {
              "name": "CLA-2004:812",
              "refsource": "CONECTIVA",
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
            },
            {
              "name": "MDKSA-2003:012",
              "refsource": "MANDRAKE",
              "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
            },
            {
              "name": "20040331 OpenLinux: vim arbitrary commands execution through modelines",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
            },
            {
              "name": "vim-modeline-command-execution(10835)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1377",
    "datePublished": "2004-09-01T04:00:00",
    "dateReserved": "2002-12-16T00:00:00",
    "dateUpdated": "2024-08-08T03:19:28.975Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B6461B4-AD69-4E54-901D-CB354FE9061C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D51F522E-E7A6-4861-BE54-C76B5D6062AB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B5306C4-D4FA-48FE-B72A-8ED231DF283A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D8C559F4-82E7-4BFA-B1C2-AAD1EA790DE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD83B9EE-82FF-4DA5-8577-97CE226EFEAF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"823E99C7-7020-48B2-8F71-6FA5A1097EC0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A5B6675-BF67-434D-8D64-7BA6029A6BD4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"826F3339-8674-4A84-8EAC-17C884BBF723\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:5.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A7C7C4D-9E38-40A1-B003-939F46CD96CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3A7789A-E0B0-45EA-B05A-A5A1BF31A24D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim_development_group:vim:6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D6FF1779-4A0A-4E9E-94E1-5F7C4EF0555B\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.\"}, {\"lang\": \"es\", \"value\": \"vim 6.0 y 6.1 y posiblemente otras versiones, permite a atacantes ejecutar comandos arbitrarios usando la caracter\\u00edstica libcall en lineas de modo, que no son apantalladas si no que pueden ser ejecutadas cuando vim es usado como editor para otros productos como mutt.\"}]",
      "id": "CVE-2002-1377",
      "lastModified": "2024-11-20T23:41:09.780",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}",
      "published": "2002-12-23T05:00:00.000",
      "references": "[{\"url\": \"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.guninski.com/vim1.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-297.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-302.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/6384\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/10835\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.guninski.com/vim1.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-297.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-302.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/6384\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/10835\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2002-1377\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2002-12-23T05:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.\"},{\"lang\":\"es\",\"value\":\"vim 6.0 y 6.1 y posiblemente otras versiones, permite a atacantes ejecutar comandos arbitrarios usando la caracter\u00edstica libcall en lineas de modo, que no son apantalladas si no que pueden ser ejecutadas cuando vim es usado como editor para otros productos como mutt.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B6461B4-AD69-4E54-901D-CB354FE9061C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D51F522E-E7A6-4861-BE54-C76B5D6062AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B5306C4-D4FA-48FE-B72A-8ED231DF283A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8C559F4-82E7-4BFA-B1C2-AAD1EA790DE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD83B9EE-82FF-4DA5-8577-97CE226EFEAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"823E99C7-7020-48B2-8F71-6FA5A1097EC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A5B6675-BF67-434D-8D64-7BA6029A6BD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"826F3339-8674-4A84-8EAC-17C884BBF723\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A7C7C4D-9E38-40A1-B003-939F46CD96CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3A7789A-E0B0-45EA-B05A-A5A1BF31A24D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim_development_group:vim:6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6FF1779-4A0A-4E9E-94E1-5F7C4EF0555B\"}]}]}],\"references\":[{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.guninski.com/vim1.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-297.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-302.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/6384\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/10835\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.guninski.com/vim1.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-297.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-302.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/6384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/10835\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

RHSA-2002:297

Vulnerability from csaf_redhat - Published: 2003-01-16 14:32 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: : : : Updated vim packages fix modeline vulnerability

Notes

Topic

Updated vim packages are now available for Red Hat Linux. These updates resolve a security issue when opening a specially crafted text file. [Updated 16 April 2003] Added packages for Red Hat Linux on IBM iSeries and pSeries systems.

Details

VIM (Vi IMproved) is a version of the vi editor. VIM allows a user to set the modeline differently for each edited text file by placing special comments in the files. Georgi Guninski found that these comments can be carefully crafted in order to call external programs. This could allow an attacker to create a text file such that when it is opened arbitrary commands are executed. Users of VIM are advised to upgrade to these errata packages which have been patched to disable the usage of dangerous functions in modelines.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated vim packages are now available for Red Hat Linux.  These \nupdates resolve a security issue when opening a specially crafted text \nfile.\n\n[Updated 16 April 2003]\nAdded packages for Red Hat Linux on IBM iSeries and pSeries systems.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "VIM (Vi IMproved) is a version of the vi editor.  \n \nVIM allows a user to set the modeline differently for each edited text \nfile by placing special comments in the files.  Georgi Guninski found that\nthese comments can be carefully crafted in order to call external programs.\n This could allow an attacker to create a text file such that when it is\nopened arbitrary commands are executed.   \n\nUsers of VIM are advised to upgrade to these errata packages which have \nbeen patched to disable the usage of dangerous functions in modelines.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2002:297",
        "url": "https://access.redhat.com/errata/RHSA-2002:297"
      },
      {
        "category": "external",
        "summary": "http://www.guninski.com/vim1.html",
        "url": "http://www.guninski.com/vim1.html"
      },
      {
        "category": "external",
        "summary": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566",
        "url": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_297.json"
      }
    ],
    "title": "Red Hat Security Advisory: : : : Updated vim packages fix modeline vulnerability",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:18+00:00",
      "generator": {
        "date": "2025-11-21T17:25:18+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2002:297",
      "initial_release_date": "2003-01-16T14:32:00+00:00",
      "revision_history": [
        {
          "date": "2003-01-16T14:32:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:18+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 6.2",
                "product": {
                  "name": "Red Hat Linux 6.2",
                  "product_id": "Red Hat Linux 6.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.0",
                "product": {
                  "name": "Red Hat Linux 7.0",
                  "product_id": "Red Hat Linux 7.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.1",
                "product": {
                  "name": "Red Hat Linux 7.1",
                  "product_id": "Red Hat Linux 7.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.2",
                "product": {
                  "name": "Red Hat Linux 7.2",
                  "product_id": "Red Hat Linux 7.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.3",
                "product": {
                  "name": "Red Hat Linux 7.3",
                  "product_id": "Red Hat Linux 7.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 8.0",
                "product": {
                  "name": "Red Hat Linux 8.0",
                  "product_id": "Red Hat Linux 8.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:8.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1377",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616898"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 6.2",
          "Red Hat Linux 7.0",
          "Red Hat Linux 7.1",
          "Red Hat Linux 7.2",
          "Red Hat Linux 7.3",
          "Red Hat Linux 8.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616898",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616898"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1377",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-01-16T14:32:00+00:00",
          "details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n \nTo update all RPMs for your particular architecture, run: \n \nrpm -Fvh [filenames] \n \nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those \nRPMs which are currently installed will be updated.  Those RPMs which are \nnot installed but included in the list will not be updated.  Note that \nyou can also use wildcards (*.rpm) if your current directory *only*\ncontains the desired RPMs. \n \nPlease note that this update is also available via Red Hat Network.  Many \npeople find this an easier way to apply updates.  To use Red Hat Network, \nlaunch the Red Hat Update Agent with the following command: \n \nup2date \n \nThis will start an interactive process that will result in the \nappropriate RPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 6.2",
            "Red Hat Linux 7.0",
            "Red Hat Linux 7.1",
            "Red Hat Linux 7.2",
            "Red Hat Linux 7.3",
            "Red Hat Linux 8.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2002:297"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2002_297

Vulnerability from csaf_redhat - Published: 2003-01-16 14:32 - Updated: 2024-11-21 22:34

Summary

Red Hat Security Advisory: : : : Updated vim packages fix modeline vulnerability

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated vim packages are now available for Red Hat Linux.  These \nupdates resolve a security issue when opening a specially crafted text \nfile.\n\n[Updated 16 April 2003]\nAdded packages for Red Hat Linux on IBM iSeries and pSeries systems.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "VIM (Vi IMproved) is a version of the vi editor.  \n \nVIM allows a user to set the modeline differently for each edited text \nfile by placing special comments in the files.  Georgi Guninski found that\nthese comments can be carefully crafted in order to call external programs.\n This could allow an attacker to create a text file such that when it is\nopened arbitrary commands are executed.   \n\nUsers of VIM are advised to upgrade to these errata packages which have \nbeen patched to disable the usage of dangerous functions in modelines.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2002:297",
        "url": "https://access.redhat.com/errata/RHSA-2002:297"
      },
      {
        "category": "external",
        "summary": "http://www.guninski.com/vim1.html",
        "url": "http://www.guninski.com/vim1.html"
      },
      {
        "category": "external",
        "summary": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566",
        "url": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_297.json"
      }
    ],
    "title": "Red Hat Security Advisory: : : : Updated vim packages fix modeline vulnerability",
    "tracking": {
      "current_release_date": "2024-11-21T22:34:50+00:00",
      "generator": {
        "date": "2024-11-21T22:34:50+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2002:297",
      "initial_release_date": "2003-01-16T14:32:00+00:00",
      "revision_history": [
        {
          "date": "2003-01-16T14:32:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:34:50+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Linux 6.2",
                "product": {
                  "name": "Red Hat Linux 6.2",
                  "product_id": "Red Hat Linux 6.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.0",
                "product": {
                  "name": "Red Hat Linux 7.0",
                  "product_id": "Red Hat Linux 7.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.1",
                "product": {
                  "name": "Red Hat Linux 7.1",
                  "product_id": "Red Hat Linux 7.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.2",
                "product": {
                  "name": "Red Hat Linux 7.2",
                  "product_id": "Red Hat Linux 7.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 7.3",
                "product": {
                  "name": "Red Hat Linux 7.3",
                  "product_id": "Red Hat Linux 7.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:7.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux 8.0",
                "product": {
                  "name": "Red Hat Linux 8.0",
                  "product_id": "Red Hat Linux 8.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:linux:8.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1377",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616898"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Linux 6.2",
          "Red Hat Linux 7.0",
          "Red Hat Linux 7.1",
          "Red Hat Linux 7.2",
          "Red Hat Linux 7.3",
          "Red Hat Linux 8.0"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616898",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616898"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1377",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-01-16T14:32:00+00:00",
          "details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n \nTo update all RPMs for your particular architecture, run: \n \nrpm -Fvh [filenames] \n \nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those \nRPMs which are currently installed will be updated.  Those RPMs which are \nnot installed but included in the list will not be updated.  Note that \nyou can also use wildcards (*.rpm) if your current directory *only*\ncontains the desired RPMs. \n \nPlease note that this update is also available via Red Hat Network.  Many \npeople find this an easier way to apply updates.  To use Red Hat Network, \nlaunch the Red Hat Update Agent with the following command: \n \nup2date \n \nThis will start an interactive process that will result in the \nappropriate RPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Linux 6.2",
            "Red Hat Linux 7.0",
            "Red Hat Linux 7.1",
            "Red Hat Linux 7.2",
            "Red Hat Linux 7.3",
            "Red Hat Linux 8.0"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2002:297"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2002_302

Vulnerability from csaf_redhat - Published: 2003-01-29 15:33 - Updated: 2024-11-21 22:34

Summary

Red Hat Security Advisory: vim security update

Notes

Topic

Updated VIM packages are available for Red Hat Linux Advanced Server. These updates resolve a security issue when opening a specially-crafted text file. [Updated 06 Feb 2003] Added fixed packages for Advanced Workstation 2.1

Details

VIM (VIsual editor iMproved) is a version of the vi editor. VIM allows a user to set the modeline differently for each edited text file by placing special comments in the files. Georgi Guninski found that these comments can be carefully crafted in order to call external programs. This could allow an attacker to create a text file such that when it is opened arbitrary commands are executed. Users of VIM are advised to upgrade to these errata packages which have been patched to disable the usage of dangerous funtions in modelines.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated VIM packages are available for Red Hat Linux Advanced Server. \nThese updates resolve a security issue when opening a specially-crafted text \nfile.\n\n[Updated 06 Feb 2003]\nAdded fixed packages for Advanced Workstation 2.1",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "VIM (VIsual editor iMproved) is a version of the vi editor.  \n \nVIM allows a user to set the modeline differently for each edited text \nfile by placing special comments in the files.  Georgi Guninski found that\nthese comments can be carefully crafted in order to call external programs.\n This could allow an attacker to create a text file such that when it is\nopened arbitrary commands are executed.   \n\nUsers of VIM are advised to upgrade to these errata packages which have \nbeen patched to disable the usage of dangerous funtions in modelines.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2002:302",
        "url": "https://access.redhat.com/errata/RHSA-2002:302"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://www.guninski.com/vim1.html",
        "url": "http://www.guninski.com/vim1.html"
      },
      {
        "category": "external",
        "summary": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566",
        "url": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_302.json"
      }
    ],
    "title": "Red Hat Security Advisory: vim security update",
    "tracking": {
      "current_release_date": "2024-11-21T22:34:54+00:00",
      "generator": {
        "date": "2024-11-21T22:34:54+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2002:302",
      "initial_release_date": "2003-01-29T15:33:00+00:00",
      "revision_history": [
        {
          "date": "2003-01-29T15:33:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:34:54+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                "product": {
                  "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux Advanced Workstation 2.1",
                "product": {
                  "name": "Red Hat Linux Advanced Workstation 2.1",
                  "product_id": "Red Hat Linux Advanced Workstation 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Advanced Products"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1377",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616898"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
          "Red Hat Linux Advanced Workstation 2.1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616898",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616898"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1377",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-01-29T15:33:00+00:00",
          "details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n \nThis update is available via Red Hat Network.  To use Red Hat Network, \nlaunch the Red Hat Update Agent with the following command: \n \nup2date \n \nThis will start an interactive process that will result in the \nappropriate RPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
            "Red Hat Linux Advanced Workstation 2.1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2002:302"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2002:302

Vulnerability from csaf_redhat - Published: 2003-01-29 15:33 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: vim security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated VIM packages are available for Red Hat Linux Advanced Server. \nThese updates resolve a security issue when opening a specially-crafted text \nfile.\n\n[Updated 06 Feb 2003]\nAdded fixed packages for Advanced Workstation 2.1",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "VIM (VIsual editor iMproved) is a version of the vi editor.  \n \nVIM allows a user to set the modeline differently for each edited text \nfile by placing special comments in the files.  Georgi Guninski found that\nthese comments can be carefully crafted in order to call external programs.\n This could allow an attacker to create a text file such that when it is\nopened arbitrary commands are executed.   \n\nUsers of VIM are advised to upgrade to these errata packages which have \nbeen patched to disable the usage of dangerous funtions in modelines.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2002:302",
        "url": "https://access.redhat.com/errata/RHSA-2002:302"
      },
      {
        "category": "external",
        "summary": "http://www.guninski.com/vim1.html",
        "url": "http://www.guninski.com/vim1.html"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566",
        "url": "http://marc.theaimsgroup.com/?l=full-disclosure\u0026m=103972417823566"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_302.json"
      }
    ],
    "title": "Red Hat Security Advisory: vim security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:19+00:00",
      "generator": {
        "date": "2025-11-21T17:25:19+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2002:302",
      "initial_release_date": "2003-01-29T15:33:00+00:00",
      "revision_history": [
        {
          "date": "2003-01-29T15:33:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-07T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:19+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                "product": {
                  "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux Advanced Workstation 2.1",
                "product": {
                  "name": "Red Hat Linux Advanced Workstation 2.1",
                  "product_id": "Red Hat Linux Advanced Workstation 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Advanced Products"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1377",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616898"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
          "Red Hat Linux Advanced Workstation 2.1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616898",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616898"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1377",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1377"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-01-29T15:33:00+00:00",
          "details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n \nThis update is available via Red Hat Network.  To use Red Hat Network, \nlaunch the Red Hat Update Agent with the following command: \n \nup2date \n \nThis will start an interactive process that will result in the \nappropriate RPMs being upgraded on your system.",
          "product_ids": [
            "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
            "Red Hat Linux Advanced Workstation 2.1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2002:302"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    }
  ]
}

GSD-2002-1377

Vulnerability from gsd - Updated: 2023-12-13 01:24

Details

Aliases

CVE-2002-1377

Aliases

CVE-2002-1377

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2002-1377",
    "description": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
    "id": "GSD-2002-1377",
    "references": [
      "https://access.redhat.com/errata/RHSA-2002:302",
      "https://access.redhat.com/errata/RHSA-2002:297"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2002-1377"
      ],
      "details": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
      "id": "GSD-2002-1377",
      "modified": "2023-12-13T01:24:09.977307Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2002-1377",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "6384",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/6384"
          },
          {
            "name": "RHSA-2002:302",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
          },
          {
            "name": "http://www.guninski.com/vim1.html",
            "refsource": "MISC",
            "url": "http://www.guninski.com/vim1.html"
          },
          {
            "name": "20021213 Some vim problems, yet still vim much better than windows",
            "refsource": "FULLDISC",
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
          },
          {
            "name": "RHSA-2002:297",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
          },
          {
            "name": "55700",
            "refsource": "SUNALERT",
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
          },
          {
            "name": "CLA-2004:812",
            "refsource": "CONECTIVA",
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
          },
          {
            "name": "MDKSA-2003:012",
            "refsource": "MANDRAKE",
            "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
          },
          {
            "name": "20040331 OpenLinux: vim arbitrary commands execution through modelines",
            "refsource": "BUGTRAQ",
            "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
          },
          {
            "name": "vim-modeline-command-execution(10835)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:6.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vim_development_group:vim:5.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1377"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.guninski.com/vim1.html",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.guninski.com/vim1.html"
            },
            {
              "name": "RHSA-2002:297",
              "refsource": "REDHAT",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
            },
            {
              "name": "20021213 Some vim problems, yet still vim much better than windows",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
            },
            {
              "name": "CLA-2004:812",
              "refsource": "CONECTIVA",
              "tags": [],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
            },
            {
              "name": "MDKSA-2003:012",
              "refsource": "MANDRAKE",
              "tags": [],
              "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
            },
            {
              "name": "RHSA-2002:302",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
            },
            {
              "name": "55700",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
            },
            {
              "name": "6384",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/6384"
            },
            {
              "name": "20040331 OpenLinux: vim arbitrary commands execution through modelines",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
            },
            {
              "name": "vim-modeline-command-execution(10835)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-10T01:30Z",
      "publishedDate": "2002-12-23T05:00Z"
    }
  }
}

FKIE_CVE-2002-1377

Vulnerability from fkie_nvd - Published: 2002-12-23 05:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000812
cve@mitre.org	http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html
cve@mitre.org	http://marc.info/?l=bugtraq&m=108077992208690&w=2
cve@mitre.org	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700
cve@mitre.org	http://www.guninski.com/vim1.html	Patch, Vendor Advisory
cve@mitre.org	http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2002-297.html	Patch, Vendor Advisory
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2002-302.html
cve@mitre.org	http://www.securityfocus.com/bid/6384
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/10835
af854a3a-2127-422b-91ae-364da2661108	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000812
af854a3a-2127-422b-91ae-364da2661108	http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=108077992208690&w=2
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700
af854a3a-2127-422b-91ae-364da2661108	http://www.guninski.com/vim1.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2002-297.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2002-302.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/6384
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/10835

Impacted products

Vendor	Product	Version
vim_development_group	vim	5.0
vim_development_group	vim	5.1
vim_development_group	vim	5.2
vim_development_group	vim	5.3
vim_development_group	vim	5.4
vim_development_group	vim	5.5
vim_development_group	vim	5.6
vim_development_group	vim	5.7
vim_development_group	vim	5.8
vim_development_group	vim	6.0
vim_development_group	vim	6.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B6461B4-AD69-4E54-901D-CB354FE9061C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D51F522E-E7A6-4861-BE54-C76B5D6062AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B5306C4-D4FA-48FE-B72A-8ED231DF283A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8C559F4-82E7-4BFA-B1C2-AAD1EA790DE7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD83B9EE-82FF-4DA5-8577-97CE226EFEAF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "823E99C7-7020-48B2-8F71-6FA5A1097EC0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A5B6675-BF67-434D-8D64-7BA6029A6BD4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "826F3339-8674-4A84-8EAC-17C884BBF723",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:5.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7C7C4D-9E38-40A1-B003-939F46CD96CC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3A7789A-E0B0-45EA-B05A-A5A1BF31A24D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vim_development_group:vim:6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6FF1779-4A0A-4E9E-94E1-5F7C4EF0555B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt."
    },
    {
      "lang": "es",
      "value": "vim 6.0 y 6.1 y posiblemente otras versiones, permite a atacantes ejecutar comandos arbitrarios usando la caracter\u00edstica libcall en lineas de modo, que no son apantalladas si no que pueden ser ejecutadas cuando vim es usado como editor para otros productos como mutt."
    }
  ],
  "id": "CVE-2002-1377",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2002-12-23T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.guninski.com/vim1.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/6384"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.guninski.com/vim1.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/6384"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-3G8F-84MQ-GHVW

Vulnerability from github – Published: 2022-04-30 18:21 – Updated: 2022-04-30 18:21

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2002-1377"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2002-12-23T05:00:00Z",
    "severity": "MODERATE"
  },
  "details": "vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.",
  "id": "GHSA-3g8f-84mq-ghvw",
  "modified": "2022-04-30T18:21:01Z",
  "published": "2022-04-30T18:21:01Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1377"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10835"
    },
    {
      "type": "WEB",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000812"
    },
    {
      "type": "WEB",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2002-December/002948.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=108077992208690\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55700"
    },
    {
      "type": "WEB",
      "url": "http://www.guninski.com/vim1.html"
    },
    {
      "type": "WEB",
      "url": "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:012"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-297.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2002-302.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/6384"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2002-1377 (GCVE-0-2002-1377)

RHSA-2002:297

RHSA-2002_297

RHSA-2002_302

RHSA-2002:302

GSD-2002-1377

FKIE_CVE-2002-1377

GHSA-3G8F-84MQ-GHVW

Tags

Sightings

Nomenclature