vulnerability

Oracle Solaris 11: CVE-2019-2007: Vulnerability in Vim

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Jun 19, 2019	Jan 19, 2021	Feb 17, 2022

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Jun 19, 2019

Added

Jan 19, 2021

Modified

Feb 17, 2022

Description

In getReadIndex and getWriteIndex of FifoControllerBase.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the audio server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9Android ID: A-120789744

Solution(s)

oracle-solaris-11-4-upgrade-editor-gvim-8-2-444-11-4-24-0-1-75-1oracle-solaris-11-4-upgrade-editor-vim-8-2-444-11-4-24-0-1-75-1oracle-solaris-11-4-upgrade-editor-vim-vim-core-8-2-444-11-4-24-0-1-75-1

References

CVE-2019-2007
https://attackerkb.com/topics/CVE-2019-2007
URL-https://support.oracle.com/epmos/faces/DocumentDisplay?id=1448883.1&displayIndex=1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today