[VIM] CVE-2009-4006

security curmudgeon jericho at attrition.org
Wed Dec 9 09:44:15 UTC 2009


No one from nvd.gov currently subscribes to VIM. I am CC'ing them on this 
mail and making sure they are aware of this list =)

In general, text issues should go to cve at mitre.org (or here, we know Steve 
reads) and anything CVSS related should go to nvd at nist.gov, as they 
calculate the scores.

.b

p.s. NVD: http://attrition.org/mailman/listinfo/vim



On Wed, 9 Dec 2009, Carsten H. Eiram wrote:

: I just noticed that the NVD CVSS2 score sets "Au:S". That is incorrect -
: no authentication is required.
: 
: cheers,
: /Carsten
: 
: 
: On Wed, 2009-12-09 at 11:34 +0200, Noam Rathaus wrote:
: > The text here:
: > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4006
: > 
: > Says:
: >  hexidecimal
: > 
: > I believe the right word is 
: >  hexadecimal
: > 
: > Thanks,
: > Noam.
: > 
: -- 
: 
: Med venlig hilsen / Kind regards
: 
: 
: Carsten H. Eiram
: Chief Security Specialist
: 
: Secunia 
: Weidekampsgade 14 A
: DK-2300 Copenhagen S
: Denmark
: 
: Phone  +45 7020 5144
: Fax    +45 7020 5145
: 


More information about the VIM mailing list