[VIM] SA35195 / OSVDB 54734

Carsten H. Eiram che at secunia.com
Thu Aug 6 07:18:49 UTC 2009


Steve, this one doesn't seem to have a CVE identifier assigned.

When verifying it, one of my guys determined that the core problem is a
stack-based buffer overflow, not a heap-based as the reporter states.

Furthermore, the general nature of the vulnerable function means that
not only MP3 files are a valid vector; titles obtained from other
metadata storage formats may be vectors as well (e.g. FLAC has been
confirmed).


-- 

Med venlig hilsen / Kind regards


Carsten H. Eiram
Chief Security Specialist

Secunia 
Weidekampsgade 14 A
DK-2300 Copenhagen S
Denmark

Phone  +45 7020 5144
Fax    +45 7020 5145



More information about the VIM mailing list