CVSS: 9.8EPSS: 0%CPEs: 47EXPL: 0CVE-2004-1175 – dsa-639.txt
https://notcve.org/view.php?id=CVE-2004-1175
16 Jan 2005 — fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters. Andrew V. Samoilov has noticed that several bugfixes which were applied to the source by upstream developers of mc, the midnight commander, a file browser and manager, were not backported to the current version of mc that Debian ships in their stable release. • http://secunia.com/advisories/13863 •
CVSS: 9.8EPSS: 1%CPEs: 47EXPL: 0CVE-2004-1005 – dsa-639.txt
https://notcve.org/view.php?id=CVE-2004-1005
16 Jan 2005 — Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact. Múltiples desbordamientos de búfer en Midnight Commander (mc) 4.5.55 y versiones anteriores, permiten a atacantes remotos ejecutar acciones de impacto desconocido. Andrew V. Samoilov has noticed that several bugfixes which were applied to the source by upstream developers of mc, the midnight commander, a file browser and manager, were not backported to the current version of mc that Debi... • http://secunia.com/advisories/13863 •
CVSS: 9.8EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0232
https://notcve.org/view.php?id=CVE-2004-0232
05 May 2004 — Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Mútiples vulnerabilidades de cadena de formato en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código de su elección. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0226
https://notcve.org/view.php?id=CVE-2004-0226
05 May 2004 — Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Múltiples desbordamientos de búfer en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código arbitrario. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 0%CPEs: 28EXPL: 0CVE-2004-0231
https://notcve.org/view.php?id=CVE-2004-0231
05 May 2004 — Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." Múltiples vulnerabilidades en Midnight Commander (mc) anteriores a 4.6.0, con impacto desconocido, relacionadas con "creación insegura de ficheros y directorios temporales." • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2000-1109
https://notcve.org/view.php?id=CVE-2000-1109
09 Jan 2001 — Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed. • http://archives.neohapsis.com/archives/bugtraq/2000-11/0373.html •