CVE-2002-1377

Name of the Vulnerable Software and Affected Versions vim versions 6.0 through 6.1

Description The issue allows attackers to execute arbitrary commands using the libcall feature in modelines. Modelines are not sandboxed and may be executed when vim is used to edit a malicious file. This has been demonstrated using mutt.

Recommendations For versions 6.0 and 6.1, consider disabling the libcall feature in modelines as a temporary workaround until a patch is available. Restrict access to potentially malicious files to minimize the risk of exploitation.