CVE-2005-2368
Published Jul 26, 2005
Last updated 7 years ago
Overview
- Description
- vim 6.3 before 6.3.082, with modelines enabled, allows external user-assisted attackers to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-78
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27672CCF-59C2-45D8-8B82-822040DDAE34"
},
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3.011:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1B0FABE-75CE-4074-91FF-0D02DD0B6F1A"
},
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3.025:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6536006A-DB7A-4A50-9CF3-30EEAB59A83F"
},
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3.030:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E7240424-79F1-41AA-AF22-C66F9F94B7E5"
},
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3.044:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1BA3F17-DA8F-4E4F-B654-AEBED68B43B8"
},
{
"criteria": "cpe:2.3:a:vim_development_group:vim:6.3.081:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B414DCD0-4413-4190-92E0-B206B78752AF"
}
],
"operator": "OR"
}
]
}
]