Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2004-1175
HistoryApr 14, 2005 - 4:00 a.m.

CVE-2004-1175

2005-04-1404:00:00
[email protected]
web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

84.0%

JSON

fish.c in midnight commander allows remote attackers to execute arbitrary programs via “insecure filename quoting,” possibly using shell metacharacters.

Affected configurations

NVD
Node
midnight_commandermidnight_commanderMatch4.5.40
OR
midnight_commandermidnight_commanderMatch4.5.41
OR
midnight_commandermidnight_commanderMatch4.5.42
OR
midnight_commandermidnight_commanderMatch4.5.43
OR
midnight_commandermidnight_commanderMatch4.5.44
OR
midnight_commandermidnight_commanderMatch4.5.45
OR
midnight_commandermidnight_commanderMatch4.5.46
OR
midnight_commandermidnight_commanderMatch4.5.47
OR
midnight_commandermidnight_commanderMatch4.5.48
OR
midnight_commandermidnight_commanderMatch4.5.49
OR
midnight_commandermidnight_commanderMatch4.5.50
OR
midnight_commandermidnight_commanderMatch4.5.51
OR
midnight_commandermidnight_commanderMatch4.5.52
OR
midnight_commandermidnight_commanderMatch4.5.54
OR
midnight_commandermidnight_commanderMatch4.5.55
OR
midnight_commandermidnight_commanderMatch4.6
Node
debiandebian_linuxMatch3.0
OR
debiandebian_linuxMatch3.0alpha
OR
debiandebian_linuxMatch3.0arm
OR
debiandebian_linuxMatch3.0hppa
OR
debiandebian_linuxMatch3.0ia-32
OR
debiandebian_linuxMatch3.0ia-64
OR
debiandebian_linuxMatch3.0m68k
OR
debiandebian_linuxMatch3.0mips
OR
debiandebian_linuxMatch3.0mipsel
OR
debiandebian_linuxMatch3.0ppc
OR
debiandebian_linuxMatch3.0s-390
OR
debiandebian_linuxMatch3.0sparc
OR
gentoolinux
OR
redhatenterprise_linuxMatch2.1advanced_server
OR
redhatenterprise_linuxMatch2.1advanced_server_ia64
OR
redhatenterprise_linuxMatch2.1workstation
OR
redhatenterprise_linuxMatch2.1workstation_ia64
OR
redhatlinux_advanced_workstationMatch2.1ia64
OR
redhatlinux_advanced_workstationMatch2.1itanium_processor
OR
susesuse_linuxMatch8.0
OR
susesuse_linuxMatch8.0i386
OR
susesuse_linuxMatch8.1
OR
susesuse_linuxMatch8.2
OR
susesuse_linuxMatch9.0
OR
susesuse_linuxMatch9.0x86_64
OR
susesuse_linuxMatch9.1
OR
susesuse_linuxMatch9.2
OR
turbolinuxturbolinux_serverMatch7.0
OR
turbolinuxturbolinux_serverMatch8.0
OR
turbolinuxturbolinux_workstationMatch7.0
OR
turbolinuxturbolinux_workstationMatch8.0

Related

cvelist 1
ubuntucve 1
cve 1
debiancve 1
redhat 1
centos 1
nessus 2
openvas 2
osv 1
debian 2
cvelist
cvelist
CVE-2004-1175
2005-01-22 05:00:00
ubuntucve
ubuntucve
CVE-2004-1175
2005-04-14 00:00:00
cve
cve
CVE-2004-1175
2005-04-14 04:00:00
debiancve
debiancve
CVE-2004-1175
2005-04-14 04:00:00
redhat
redhat
(RHSA-2005:512) mc security update
2005-06-16 00:00:00
centos
centos
gmc, mc, mcserv security update
2005-06-16 23:23:14
nessus
nessus
RHEL 2.1 : mc (RHSA-2005:512)
2005-06-17 00:00:00
Debian DSA-639-1 : mc - several vulnerabilities
2005-01-14 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-639-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 639-1 (mc)
2008-01-17 00:00:00
osv
osv
mc - several
2005-01-14 00:00:00
debian
debian
[SECURITY] [DSA 639-1] New mc packages fix several vulnerabilities
2005-01-14 10:20:28
[SECURITY] [DSA 639-1] New mc packages fix several vulnerabilities
2005-01-14 10:20:28

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

84.0%

JSON
Related for NVD:CVE-2004-1175
cvelist1ubuntucve1cve1debiancve1redhat1centos1nessus2openvas2osv1debian2