CVE Database

CVE-2007-2953

Impact: Low
Public: 2007-07-25
Bugzilla: 248542: CVE-2007-2953 vim format string flaw

Details

The MITRE CVE dictionary describes this issue as:

Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.

Find out more about CVE-2007-2953 from the MITRE CVE dictionary and NIST NVD.

Statement

Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248542
The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 3 (vim) RHSA-2008:0617 November 25, 2008
Red Hat Enterprise Linux version 4 (vim) RHSA-2008:0617 November 25, 2008
Red Hat Enterprise Linux version 5 (vim) RHSA-2008:0580 November 25, 2008

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.