CVSS: 9.8EPSS: 0%CPEs: 47EXPL: 0CVE-2004-1175
https://notcve.org/view.php?id=CVE-2004-1175
22 Jan 2005 — fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters. • http://secunia.com/advisories/13863 •
CVSS: 9.8EPSS: 2%CPEs: 47EXPL: 0CVE-2004-1176
https://notcve.org/view.php?id=CVE-2004-1176
22 Jan 2005 — Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. • http://secunia.com/advisories/13863 •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0226
https://notcve.org/view.php?id=CVE-2004-0226
05 May 2004 — Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Múltiples desbordamientos de búfer en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código arbitrario. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 0%CPEs: 28EXPL: 0CVE-2004-0231
https://notcve.org/view.php?id=CVE-2004-0231
05 May 2004 — Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." Múltiples vulnerabilidades en Midnight Commander (mc) anteriores a 4.6.0, con impacto desconocido, relacionadas con "creación insegura de ficheros y directorios temporales." • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0232
https://notcve.org/view.php?id=CVE-2004-0232
05 May 2004 — Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Mútiples vulnerabilidades de cadena de formato en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código de su elección. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2000-1109
https://notcve.org/view.php?id=CVE-2000-1109
09 Jan 2001 — Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed. • http://archives.neohapsis.com/archives/bugtraq/2000-11/0373.html •