Vulnerabilities > CVE-2001-0409 - Unspecified vulnerability in VIM Development Group VIM 5.7

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
vim-development-group
exploit available

Summary

vim (aka gvim) allows local users to modify files being edited by other users via a symlink attack on the backup and swap files, when the victim is editing the file in a world writable directory.

Vulnerable Configurations

Part Description Count
Application
Vim_Development_Group
1

Exploit-Db

descriptionVim 5.x Swap File Race Condition Vulnerability. CVE-2001-0409. Local exploit for linux platform
idEDB-ID:20967
last seen2016-02-02
modified2001-01-26
published2001-01-26
reporterzen-parse
sourcehttps://www.exploit-db.com/download/20967/
titleVim 5.x Swap File Race Condition Vulnerability