Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.67993
Categoría:FreeBSD Local Security Checks
Título:FreeBSD Ports: vim6, vim6+ruby
Resumen:NOSUMMARY
Descripción:Description:
The remote host is missing an update to the system
as announced in the referenced advisory.

The following packages are affected:
vim6
vim6+ruby

CVE-2008-3432
Heap-based buffer overflow in the mch_expand_wildcards function in
os_unix.c in Vim 6.2 and 6.3 allows user-assisted attackers to execute
arbitrary code via shell metacharacters in filenames, as demonstrated
by the netrw.v3 test case.

Solution:
Update your system with the appropriate patches or
software upgrades.

http://www.openwall.com/lists/oss-security/2008/07/15/4
http://www.vuxml.org/freebsd/f866d2af-bbba-11df-8a8d-0008743bf21a.html

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-3432
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
BugTraq ID: 30648
http://www.securityfocus.com/bid/30648
BugTraq ID: 31681
http://www.securityfocus.com/bid/31681
Bugtraq: 20090401 VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim (Google Search)
http://www.securityfocus.com/archive/1/502322/100/0/threaded
http://www.openwall.com/lists/oss-security/2008/07/15/4
http://www.openwall.com/lists/oss-security/2008/08/01/1
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11203
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5987
http://www.redhat.com/support/errata/RHSA-2008-0617.html
http://secunia.com/advisories/32222
http://secunia.com/advisories/32858
http://secunia.com/advisories/33410
http://www.vupen.com/english/advisories/2008/2780
http://www.vupen.com/english/advisories/2009/0033
http://www.vupen.com/english/advisories/2009/0904
XForce ISS Database: vim-mchexpandwildcards-bo(44722)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44722
CopyrightCopyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.