6.9

CVE-2009-0316

Untrusted search path vulnerability in src/if_python.c in the Python interface in Vim before 7.2.045 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983), as demonstrated by an erroneous search path for plugin/bike.vim in bicyclerepair.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VimVim Version <= 7.2
VimVim Version1.0
VimVim Version1.22
VimVim Version3.0
VimVim Version4.0
VimVim Version5.0
VimVim Version5.1
VimVim Version5.2
VimVim Version5.3
VimVim Version5.4
VimVim Version5.5
VimVim Version5.6
VimVim Version5.7
VimVim Version5.8
VimVim Version6.0
VimVim Version6.1
VimVim Version6.2
VimVim Version6.3
VimVim Version6.4
VimVim Version7.0
VimVim Version7.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.37
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C