CVSS: 9.8EPSS: 0%CPEs: 47EXPL: 0CVE-2004-1175
https://notcve.org/view.php?id=CVE-2004-1175
22 Jan 2005 — fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters. • http://secunia.com/advisories/13863 •
CVSS: 9.8EPSS: 2%CPEs: 47EXPL: 0CVE-2004-1176
https://notcve.org/view.php?id=CVE-2004-1176
22 Jan 2005 — Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. • http://secunia.com/advisories/13863 •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0226
https://notcve.org/view.php?id=CVE-2004-0226
05 May 2004 — Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Múltiples desbordamientos de búfer en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código arbitrario. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 0%CPEs: 28EXPL: 0CVE-2004-0231
https://notcve.org/view.php?id=CVE-2004-0231
05 May 2004 — Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." Múltiples vulnerabilidades en Midnight Commander (mc) anteriores a 4.6.0, con impacto desconocido, relacionadas con "creación insegura de ficheros y directorios temporales." • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 1%CPEs: 28EXPL: 0CVE-2004-0232
https://notcve.org/view.php?id=CVE-2004-0232
05 May 2004 — Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. Mútiples vulnerabilidades de cadena de formato en Midnight Commander (mc) anteriores a 4.6.0 pueden permitir a atacantes causar una denegación de servicio o ejecutar código de su elección. • http://security.gentoo.org/glsa/glsa-200405-21.xml •
CVSS: 9.8EPSS: 8%CPEs: 3EXPL: 0CVE-2003-1023
https://notcve.org/view.php?id=CVE-2003-1023
06 Jan 2004 — Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion. Desbordamiento de búfer basado en la pila en vfs_s_resolve_symlink de vfs/direntry.c en Midnight Commander (mc) 4.6.0 y anteriores, y posiblemente otras versiones permite a atacantes remotos ejecutar código arbitrario durante una conversión de enlaces simbólicos (symlink). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-014.0.txt •