Oval Definition:oval:org.opensuse.security:def:20083076
Revision Date:2015-11-16Version:1
Title:CVE-2008-3076
Description:
The Netrw plugin 125 in netrw.vim in Vim 7.2a.10 allows user-assisted attackers to execute arbitrary code via shell metacharacters in filenames used by the execute and system functions within the (1) mz and (2) mc commands, as demonstrated by the netrw.v2 and netrw.v3 test cases. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2008-2712.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-3076
Platform(s):openSUSE 10.3
openSUSE 11.0
openSUSE 11.1
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • AND
  • gvim less than 7.2-9.1
  • OR vim-base less than 7.2-9.1
  • OR vim-data less than 7.2-9.1
  • OR vim-enhanced less than 7.2-9.1
  • OR Package Information
  • suse111 is installed
  • AND
  • gvim less than 7.2-7.4.1
  • OR vim-base less than 7.2-7.4.1
  • OR vim-data less than 7.2-7.4.1
  • OR vim-enhanced less than 7.2-7.4.1
    • BACK