CVE-2004-1138
published 2005-01-10CVE-2004-1138: VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is…
PriorityP422high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.41%
32.7th percentile
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | vim | < vim 1:6.3-046+0sarge1 (bookworm) | vim 1:6.3-046+0sarge1 (bookworm) |
| vim | vim | >= 0 < 1:6.3-046+0sarge1 | 1:6.3-046+0sarge1 |
| vim | vim | >= 0 < 1:6.3-046+0sarge1 | 1:6.3-046+0sarge1 |
| vim | vim | >= 0 < 1:6.3-046+0sarge1 | 1:6.3-046+0sarge1 |
| vim | vim | >= 0 < 1:6.3-046+0sarge1 | 1:6.3-046+0sarge1 |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
| vim_development_group | vim | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
vendor_redhat7.2HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
vim vulnerability
vendor_ubuntu·2004-12-23
CVE-2004-1138 vim vulnerability
Title: vim vulnerability
Summary: vim vulnerability
Ciaran McCreesh found several vulnerabilities related to the use of
options in Vim modeline commands, such as 'termcap', 'printdevice',
'titleold', 'filetype', 'syntax', 'backupext', 'keymap', 'patchmode',
and 'langmenu'.
If an attacker tricked an user to open a file with a specially crafted
modeline, he could exploit this to execute arbitrary commands with the
user's privileges.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
security flaw
vendor_redhat·2004-12-15·CVSS 7.2
CVE-2004-1138 [HIGH] security flaw
security flaw
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
Debian
CVE-2004-1138: vim - VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary comman...
vendor_debian·2004·CVSS 7.2
CVE-2004-1138 [HIGH] CVE-2004-1138: vim - VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary comman...
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
Scope: local
bookworm: resolved (fixed in 1:6.3-046+0sarge1)
bullseye: resolved (fixed in 1:6.3-046+0sarge1)
forky: resolved (fixed in 1:6.3-046+0sarge1)
sid: resolved (fixed in 1:6.3-046+0sarge1)
trixie: resolved (fixed in 1:6.3-046+0sarge1)
GHSA
GHSA-jx5v-4rgm-j8mg: VIM before 6
ghsa_unreviewed·2022-04-29
CVE-2004-1138 [HIGH] GHSA-jx5v-4rgm-j8mg: VIM before 6
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
OSV
CVE-2004-1138: VIM before 6
osv·2005-01-10·CVSS 7.2
CVE-2004-1138 [HIGH] CVE-2004-1138: VIM before 6
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
No detection rules found.
No public exploits indexed.
http://marc.info/?l=bugtraq&m=110313588125609&w=2http://www.gentoo.org/security/en/glsa/glsa-200412-10.xmlhttp://www.redhat.com/support/errata/RHSA-2005-010.htmlhttp://www.redhat.com/support/errata/RHSA-2005-036.htmlhttps://bugzilla.fedora.us/show_bug.cgi?id=2343https://exchange.xforce.ibmcloud.com/vulnerabilities/18503https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9571http://marc.info/?l=bugtraq&m=110313588125609&w=2http://www.gentoo.org/security/en/glsa/glsa-200412-10.xmlhttp://www.redhat.com/support/errata/RHSA-2005-010.htmlhttp://www.redhat.com/support/errata/RHSA-2005-036.htmlhttps://bugzilla.fedora.us/show_bug.cgi?id=2343https://exchange.xforce.ibmcloud.com/vulnerabilities/18503https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9571
2005-01-10
Published