Ubuntu 6.06 LTS, 6.10, 7.04: USN-505-1 Critical: Vim Exec Threat
ubuntu
August 28, 2007
Severe vulnerability in vim permits remote adversaries to run arbitrary code with user-level access, affecting various versions of Ubuntu LTS.
Ulf Harnhammar discovered that vim does not properly sanitise the
"helptags_one()" function when running the "helptags" command.
By tricking a user into running a crafted help fi...