9.3

CVE-2010-3914

EPSS 2.64%
Veröffentlicht 03.11.2010 13:37:08
Zuletzt bearbeitet 29.04.2026 01:13:23
Quelle vultures@jpcert.or.jp
CVE-Watchlists
Login
Unerledigt
Login

Untrusted search path vulnerability in VIM Development Group GVim before 7.3.034, and possibly other versions before 7.3.46, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse User32.dll or other DLL that is located in the same folder as a .TXT file.  NOTE: some of these details are obtained from third party information.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

NVD 33 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Vim ≫ Gvim Version <= 7.3.033

Vim ≫ Gvim Version7.3.01

Vim ≫ Gvim Version7.3.02

Vim ≫ Gvim Version7.3.03

Vim ≫ Gvim Version7.3.04

Vim ≫ Gvim Version7.3.05

Vim ≫ Gvim Version7.3.06

Vim ≫ Gvim Version7.3.07

Vim ≫ Gvim Version7.3.08

Vim ≫ Gvim Version7.3.09

Vim ≫ Gvim Version7.3.010

Vim ≫ Gvim Version7.3.011

Vim ≫ Gvim Version7.3.012

Vim ≫ Gvim Version7.3.013

Vim ≫ Gvim Version7.3.014

Vim ≫ Gvim Version7.3.015

Vim ≫ Gvim Version7.3.016

Vim ≫ Gvim Version7.3.017

Vim ≫ Gvim Version7.3.018

Vim ≫ Gvim Version7.3.019

Vim ≫ Gvim Version7.3.020

Vim ≫ Gvim Version7.3.021

Vim ≫ Gvim Version7.3.022

Vim ≫ Gvim Version7.3.023

Vim ≫ Gvim Version7.3.024

Vim ≫ Gvim Version7.3.025

Vim ≫ Gvim Version7.3.026

Vim ≫ Gvim Version7.3.027

Vim ≫ Gvim Version7.3.028

Vim ≫ Gvim Version7.3.029

Vim ≫ Gvim Version7.3.030

Vim ≫ Gvim Version7.3.031

Vim ≫ Gvim Version7.3.032

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.64%	0.856

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

Es wurden noch keine Informationen zu CWE veröffentlicht.

ftp://ftp.vim.org/pub/vim/patches/7.3/7.3.034

Patch

http://jvn.jp/en/jp/JVN27868039/index.html

Patch

http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000051.html

http://secunia.com/advisories/42084

Vendor Advisory

http://www.securityfocus.com/bid/44588

https://nvd.nist.gov/vuln/detail/CVE-2010-3914

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-3914

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-3914

EUVD