Article 4H2PC If you haven’t patched Vim or NeoVim text editors, you really, really should

If you haven’t patched Vim or NeoVim text editors, you really, really should

by
Dan Goodin
from Ars Technica - All content on (#4H2PC)
vim-800x476.jpg

Enlarge (credit: unknown)

A recently patched vulnerability in text editors preinstalled in a variety of Linux distributions allows hackers to take control of computers when users open a malicious text file. The latest version of Apple's macOS is continuing to use a vulnerable version, although attacks only work when users have changed a default setting that enables a feature called modelines.

Vim and its forked derivative, NeoVim, contained a flaw that resided in modelines. This feature lets users specify window dimensions and other custom options near the start or end of a text file. While modelines restricts the commands available and runs them inside a sandbox that's cordoned off from the operating system, researcher Armin Razmjou noticed the source command (including the bang on the end) bypassed that protection.

"It reads and executes commands from a given file as if typed manually, running them after the sandbox has been left," the researcher wrote in a post earlier this month.

Read 5 remaining paragraphs | Comments

index?i=GwWrjlAi6ko:sASYqLpkAbE:V_sGLiPB index?i=GwWrjlAi6ko:sASYqLpkAbE:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments