RHEL 2.1 / 3 / 4 : vim (RHSA-2005:745)
High Nessus Plugin ID 19489
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionUpdated vim packages that fix a security issue are now available.
This update has been rated as having low security impact by the Red Hat Security Response Team.
VIM (VIsual editor iMproved) is a version of the vi editor.
A bug was found in the way VIM processes modelines. If a user with modelines enabled opens a text file with a carefully crafted modeline, arbitrary commands may be executed as the user running VIM. The Common Vulnerabilities and Exposures project has assigned the name CVE-2005-2368 to this issue.
Users of VIM are advised to upgrade to these updated packages, which resolve this issue.
SolutionUpdate the affected packages.