Launchpad.net

CVE 2005-0069

The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.

Related bugs and status

CVE-2005-0069 (Candidate) is related to these bugs:

Bug #12027: vim: temporary file vulnerabilities (CAN-2005-0069)

Summary				In	Importance	Status
	12027	vim: temporary file vulnerabilities (CAN-2005-0069)		vim (Ubuntu)	High	Invalid
	12027	vim: temporary file vulnerabilities (CAN-2005-0069)		vim (Debian)	Unknown	Fix Released

Bug #12030: vim: Race conditions and symlink attacks in vim (tcltags and vimspell)

Summary				In	Importance	Status
	12030	vim: Race conditions and symlink attacks in vim (tcltags and vimspell)		vim (Ubuntu)	High	Fix Released
	12030	vim: Race conditions and symlink attacks in vim (tcltags and vimspell)		vim (Debian)	Unknown	Fix Released

Bug #183935: Please merge vim (1:7.1-175+2) from debian unstable

Summary				In	Importance	Status
	183935	Please merge vim (1:7.1-175+2) from debian unstable		vim (Ubuntu)	Wishlist	Fix Released

Bug #196112: Vim omni completion for LP bugs uses Debian Bugs information

Summary				In	Importance	Status
	196112	Vim omni completion for LP bugs uses Debian Bugs information		vim (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2005-0069

Related bugs and status

Related bugs

References