Vulnerabilities > CVE-2005-0069 - Unspecified vulnerability in VIM Development Group VIM

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

vim-development-group

nessus

NVD

Published: 2005-01-13

Updated: 2017-10-11

Summary

The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.

Vulnerable Configurations

Part	Description	Count
Application	Vim_Development_Group VIM Development Group VIM 6.3.011 VIM Development Group VIM 6.3.025 VIM Development Group VIM 6.3.030 VIM Development Group VIM 6.3.044	4

Nessus

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2005-122.NASL
description	Updated vim packages that fix a security vulnerability are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM (Vi IMproved) is an updated and improved version of the vi screen-based editor. The Debian Security Audit Project discovered an insecure temporary file usage in VIM. A local user could overwrite or create files as a different user who happens to run one of the the vulnerable utilities. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0069 to this issue. All users of VIM are advised to upgrade to these erratum packages, which contain a backported patche for this issue.
last seen	2020-06-01
modified	2020-06-02
plugin id	17148
published	2005-02-18
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/17148
title	RHEL 2.1 / 3 : vim (RHSA-2005:122)

NASL family	Ubuntu Local Security Checks
NASL id	UBUNTU_USN-61-1.NASL
description	Javier Fernandez-Sanguino Pena noticed that the auxillary scripts
last seen	2020-06-01
modified	2020-06-02
plugin id	20680
published	2006-01-15
reporter	Ubuntu Security Notice (C) 2005-2019 Canonical, Inc. / NASL script (C) 2006-2016 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/20680
title	Ubuntu 4.10 : vim vulnerabilities (USN-61-1)

NASL family	Mandriva Local Security Checks
NASL id	MANDRAKE_MDKSA-2005-029.NASL
description	Javier Fernandez-Sanguino Pena discovered two vulnerabilities in scripts included with the vim editor. The two scripts,
last seen	2020-06-01
modified	2020-06-02
plugin id	16302
published	2005-02-03
reporter	This script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/16302
title	Mandrake Linux Security Advisory : vim (MDKSA-2005:029)

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2005-036.NASL
description	Updated vim packages that fix security vulnerabilities are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. VIM (Vi IMproved) is an updated and improved version of the vi screen-based editor. Ciaran McCreesh discovered a modeline vulnerability in VIM. An attacker could create a text file containing a specially crafted modeline which could cause arbitrary command execution when viewed by a victim using VIM. The Common Vulnerabilities and Exposures project has assigned the name CVE-2004-1138 to this issue. Please note that this issue only affects users who have modelines and filetype plugins enabled, which is not the default. The Debian Security Audit Project discovered an insecure temporary file usage in VIM. A local user could overwrite or create files as a different user who happens to run one of the the vulnerable utilities. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0069 to this issue. All users of VIM are advised to upgrade to these erratum packages, which contain backported patches for these issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	17170
published	2005-02-22
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/17170
title	RHEL 4 : vim (RHSA-2005:036)

Oval

accepted

2013-04-29T04:19:10.653-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 3
oval oval:org.mitre.oval:def:11782
comment CentOS Linux 3.x
oval oval:org.mitre.oval:def:16651
comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990

description

The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.

family

unix

oval:org.mitre.oval:def:9402

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.

version

Redhat

advisories

rhsa
id RHSA-2005:036
rhsa
id RHSA-2005:122

rpms

vim-X11-1:6.3.046-0.40E.4
vim-common-1:6.3.046-0.40E.4
vim-debuginfo-1:6.3.046-0.40E.4
vim-enhanced-1:6.3.046-0.40E.4
vim-minimal-1:6.3.046-0.40E.4
vim-X11-1:6.3.046-0.30E.3
vim-common-1:6.3.046-0.30E.3
vim-debuginfo-1:6.3.046-0.30E.3
vim-enhanced-1:6.3.046-0.30E.3
vim-minimal-1:6.3.046-0.30E.3

Summary

Vulnerable Configurations

Nessus

Oval

Redhat

References