CVE Database


Impact: Low
Public: 2007-07-25
Bugzilla: 248542: CVE-2007-2953 vim format string flaw


The MITRE CVE dictionary describes this issue as:

Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.

Find out more about CVE-2007-2953 from the MITRE CVE dictionary and NIST NVD.


Red Hat is aware of this issue and is tracking it via the following bug:
The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 3 (vim) RHSA-2008:0617 November 25, 2008
Red Hat Enterprise Linux version 4 (vim) RHSA-2008:0617 November 25, 2008
Red Hat Enterprise Linux version 5 (vim) RHSA-2008:0580 November 25, 2008

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.