Vulnerabilities > VIM Development Group > VIM > 5.0

DATE CVE VULNERABILITY TITLE RISK
2005-01-10 CVE-2004-1138 Unspecified vulnerability in VIM Development Group VIM
VIM before 6.3 and gVim before 6.3 allow local users to execute arbitrary commands via a file containing a crafted modeline that is executed when the file is viewed using options such as (1) termcap, (2) printdevice, (3) titleold, (4) filetype, (5) syntax, (6) backupext, (7) keymap, (8) patchmode, or (9) langmenu.
local
low complexity
vim-development-group
7.2
2002-12-23 CVE-2002-1377 Unspecified vulnerability in VIM Development Group VIM
vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to edit a malicious file, as demonstrated using mutt.
local
low complexity
vim-development-group
4.6