mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
953 B
953 B
CVE-2009-0316
Description
Untrusted search path vulnerability in src/if_python.c in the Python interface in Vim before 7.2.045 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983), as demonstrated by an erroneous search path for plugin/bike.vim in bicyclerepair.
POC
Reference
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484305
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=493937
- https://bugzilla.redhat.com/show_bug.cgi?id=481565
Github
No PoCs found on GitHub currently.