Candidate: CVE-2008-4101
PublicDate: 2008-09-18 17:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4101
 https://ubuntu.com/security/notices/USN-712-1
Description:
 Vim 3.0 through 7.x before 7.2.010 does not properly escape characters,
 which allows user-assisted attackers to (1) execute arbitrary shell
 commands by entering a K keystroke on a line that contains a ";"
 (semicolon) followed by a command, or execute arbitrary Ex commands by
 entering an argument after a (2) "Ctrl-]" (control close-square-bracket) or
 (3) "g]" (g close-square-bracket) keystroke sequence, a different issue
 than CVE-2008-2712.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_vim:
 upstream: http://ftp.vim.org/pub/vim/patches/7.2/7.2.010
upstream_vim: released (7.2.010)
dapper_vim: released (1:6.4-006+2ubuntu6.2)
feisty_vim: needed (reached end-of-life)
gutsy_vim: released (1:7.1-056+2ubuntu2.1)
hardy_vim: released (1:7.1-138+1ubuntu3.1)
intrepid_vim: released (1:7.1.314-3ubuntu3.1)
devel_vim: not-affected (2:7.2.025-2ubuntu1)