Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
BID:30254
Info
Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
| Bugtraq ID: | 30254 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Jul 16 2008 12:00AM |
| Updated: | Jul 17 2008 07:18PM |
| Credit: | Jan Minár |
| Vulnerable: |
Dr Chip netrw 127 |
| Not Vulnerable: | |
Discussion
Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
Netrw is prone to a command-execution vulnerability because the application fails to sufficiently sanitize user-supplied data.
Successfully exploiting this issue can allow an attacker to execute arbitrary commands with the privileges of the user running the affected application.
Netrw 127 is vulnerable; other versions may also be affected.
Netrw is prone to a command-execution vulnerability because the application fails to sufficiently sanitize user-supplied data.
Successfully exploiting this issue can allow an attacker to execute arbitrary commands with the privileges of the user running the affected application.
Netrw 127 is vulnerable; other versions may also be affected.
Exploit / POC
Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
The following exploit code is available:
The following exploit code is available:
Solution / Fix
Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Netrw Vim Script 's:BrowserMaps()' Command Execution Vulnerability
References:
References:
- Vendor Homepage (Dr Chip)
- Arbitrary code execution in Netrw version 127, Vim 7.2b (Jan Minár