Home > Cyber News > CVE-2019-12735: Linux Vim and Neovim Vulnerabilities Get You Hacked
CYBER NEWS

CVE-2019-12735: Linux Vim and Neovim Vulnerabilities Get You Hacked

by   |  Last Update:  |  0 Comments  

The popular Linux editors Vim and Neovim have been found to contain a very dangerous flaw which is tracked in the CVE-2019-12735 advisory. Its exploitation allows the hackers to execute arbitrary code on the affected operating system.




The Vim and Neovim text editors for Linux have been found to have a major weakness allowing the hackers to execute arbitrary code, this bug is being tracked in the CVE-2019-12735 advisory. The reason why this is a major issue is because they are widely pre-installed on victim systems. They are used both by end users, administrators and developers in order to edit text and call other third-party tools and scripts.

By themselves Vim and Neovim are one of the most popular tools as they are multipurpose tools and can interact with the system using various hooks and functions. The problem itself comes from the way the editors interact with the so-called “modelines” — a feature which is set to automatically find and apply custom preferences in the documents. The security bug in the Linux versions of Vim and Neovim were found to contain an unsafe expression allowing malicious operators to bypass the application’s sandbox.

Related: [wplinkpreview url=”https://sensorstechforum.com/cve-2019-11815-linux-kernel/”]CVE-2019-11815: Bug in Linux Kernel Prior to Version 5.0.8

By design the applications do include a sandbox which will limit the programs into running programs that are inside a virtual isolated environment. The flaw documented in the CVE-2019-12735 advisory shows how hackers can overcome it. According to the security researchers there are two possible proof-of-concept exploits that can be demonstrated in real-world scenarios. The consequences of these steps is that the malware operators can gain a reverse shell. All they need is to make the victims open up a file that was previously altered. In due time the developers have released security patches for the applications. Users should update their applications as soon as possible. However to make sure that they are protected to the maximum the security researchers also suggests that the following actions are undertaken:

  • disable modelines feature
  • disable “modelineexpr”
  • employ the securemodelines plugin instead of the built-in modelines

Martin Beltov

Martin graduated with a degree in Publishing from Sofia University. As a cyber security enthusiast he enjoys writing about the latest threats and mechanisms of intrusion.

More Posts

Follow Me:
Twitter

Related posts:
  1. Top 15 Linux Security Questions You Didn’t Know You Had Beginner Linux administrators and users should know that even though...
  2. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  3. The Best Linux Server Distributions in 2017 Gnu/Linux is one of the leading server operating systems due...
  4. Top Security and Privacy Linux Distributions in 2019 There are many specialist Linux distributions that are designed with...
  5. The 10 Best Methods on How to Improve Linux Security This blog post is created in order to help you...
  6. CVE-2013-2094: Linux.BtcMine.174 Is a Dangerous Hybrid Linux Trojan A new security report reveals that a dangerous new Linux...
  7. Systemd and Ubuntu Address Multiple Linux Vulnerabilities Just a few days ago a new systemd vulnerability was...
  8. CowerSnail Linux Virus Connected to SambaCry CVE-2017-7494 Security researchers detected the CowerSnail Linux virus in an ongoing...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree