Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.67993
Kategorie:FreeBSD Local Security Checks
Titel:FreeBSD Ports: vim6, vim6+ruby
Zusammenfassung:NOSUMMARY
Beschreibung:Description:
The remote host is missing an update to the system
as announced in the referenced advisory.

The following packages are affected:
vim6
vim6+ruby

CVE-2008-3432
Heap-based buffer overflow in the mch_expand_wildcards function in
os_unix.c in Vim 6.2 and 6.3 allows user-assisted attackers to execute
arbitrary code via shell metacharacters in filenames, as demonstrated
by the netrw.v3 test case.

Solution:
Update your system with the appropriate patches or
software upgrades.

http://www.openwall.com/lists/oss-security/2008/07/15/4
http://www.vuxml.org/freebsd/f866d2af-bbba-11df-8a8d-0008743bf21a.html

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2008-3432
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
BugTraq ID: 30648
http://www.securityfocus.com/bid/30648
BugTraq ID: 31681
http://www.securityfocus.com/bid/31681
Bugtraq: 20090401 VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim (Google Search)
http://www.securityfocus.com/archive/1/502322/100/0/threaded
http://www.openwall.com/lists/oss-security/2008/07/15/4
http://www.openwall.com/lists/oss-security/2008/08/01/1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11203
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5987
http://www.redhat.com/support/errata/RHSA-2008-0617.html
http://secunia.com/advisories/32222
http://secunia.com/advisories/32858
http://secunia.com/advisories/33410
http://www.vupen.com/english/advisories/2008/2780
http://www.vupen.com/english/advisories/2009/0033
http://www.vupen.com/english/advisories/2009/0904
XForce ISS Database: vim-mchexpandwildcards-bo(44722)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44722
CopyrightCopyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.