Vulnerability in VIM?

To: Debian-User <debian-user@lists.debian.org>
Subject: Vulnerability in VIM?
From: Ron Johnson <ron.l.johnson@cox.net>
Date: 16 Jan 2003 11:48:01 -0600
Message-id: <[🔎] 1042739281.892.66.camel@haggis>

http://www.guninski.com/vim1.html
<QUOTE>
Description:
Opening a specially crafted text file with vim can execute arbitrary
shell
commands and pass parameters to them.
Some exploit scenarios include mail user agents which use vim as editor
(mutt) or examining log files with vim. The malicous text should be near
the begining or the end of the file which mitigates the risk.

Details:
The problem are so called modelines, which can execute some commands in
vim, though they are intended to be sandboxed.
</QUOTE>

The cure is to put "set modelines=0" in ~/.vimrc or /etc/vim/vimrc.

Is the cure worse than the disease?

-- 
+------------------------------------------------------------+
| Ron Johnson, Jr.     mailto:ron.l.johnson@cox.net          |
| Jefferson, LA  USA   http://members.cox.net/ron.l.johnson  |
|                                                            |
| "Basically, I got on the plane with a bomb. Basically, I   |
|  tried to ignite it. Basically, yeah, I intended to damage |
|  the plane."                                               |
|    RICHARD REID, who tried to blow up American Airlines    |
|                  Flight 63                                 |
+------------------------------------------------------------+

Reply to:

Follow-Ups:
- ISO Images
  - From: "Kevin Smith" <kevin@netsmith.ltd.uk>
- Re: Vulnerability in VIM?
  - From: Torrin <torrin@torrin.dyndns.org>

Prev by Date: Re: Image thumbnailer
Next by Date: Re: URGENT: Building kernel.
Previous by thread: Re: which 2.4 kernel and patch(es) to avoid IDE disk corruption when DMA on?
Next by thread: ISO Images
Index(es):
- Date
- Thread