[VIM] SA31294 / CVE-2008-3408 / OSVDB 47194
Carsten H. Eiram
che at secunia.com
Mon Aug 17 11:32:01 UTC 2009
While the original exploit triggers one vulnerability, then there are
actually two stack-based buffer overflow vulnerabilities in the same
part of the code. The one triggered depends on whether the string starts
with a backslash or not.
Furthermore, as the vulnerabilities are in a part of the code not used
solely for M3U parsing, they can be exploited via other playlist formats
as well (e.g. PLS).
Our advisory, SA31294, contains a bit more information.
--
Med venlig hilsen / Kind regards
Carsten H. Eiram
Chief Security Specialist
Secunia
Weidekampsgade 14 A
DK-2300 Copenhagen S
Denmark
Phone +45 7020 5144
Fax +45 7020 5145
More information about the VIM
mailing list