CVE-2005-0763

CVE-2005-0763 is a buffer overflow in Midnight Commander (mc) up to version 4.5.55 that can allow arbitrary code execution when handling certain crafted inputs, as reported across multiple advisories. Affected components include mc and related gmc/mcserv in Debian/RHEL/CentOS advisories, with the...

CVE-2005-0763

Buffer overflow in Midnight Commander mc 4.5.55 and earlier may allow attackers to execute arbitrary code...

DSA-698-1 mc - buffer overflow

Bulletin has no description...

Debian DSA-698-1 : mc - buffer overflow

An unfixed buffer overflow has been discovered by Andrew V. Samoilov in mc, the midnight commander, a file browser and manager. This update also fixes a regression from DSA 497. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

CVE-2001-1429

CVE-2001-1429 concerns a buffer overflow in mcedit of Midnight Commander (notably around 4.5.1) that locally could cause a denial of service and potentially allow arbitrary code execution via a crafted text file. Connected data references Midnight Commander 4.x with a DOS via a symlink attack, bu...

CVE-2001-1429

Buffer overflow in mcedit in Midnight Commander 4.5.1 allows local users to cause a denial of service segmentation fault and possibly execute arbitrary code via a crafted text file...

Moderate: Red Hat Security Advisory: mc security update

Updated mc packages that fix multiple security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Midnight Commander mc is a visual shell, much like a file manager. Several format string bugs were found in Midnight...

RHEL 2.1 : mc (RHSA-2005:217)

Updated mc packages that fix multiple security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Midnight Commander mc is a visual shell, much like a file manager. Several format string bugs were found in Midnight...

GLSA-200502-24 : Midnight Commander: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200502-24 Midnight Commander: Multiple vulnerabilities Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underfl...

Midnight Commander: Multiple vulnerabilities

Background Midnight Commander is a visual console file manager. Description Midnight Commander contains several format string vulnerabilities CAN-2004-1004, buffer overflows CAN-2004-1005, a memory deallocation error CAN-2004-1092 and a buffer underflow CAN-2004-1176. Impact An attacker could...

CVE-2004-1175

fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters...

CVE-2004-1092

Midnight commander mc 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory...

CVE-2004-1176

Buffer underflow in extfs.c in Midnight Commander mc 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code...

CVE-2004-1176

CVE-2004-1176 : A buffer underflow in extfs.c of Midnight Commander (mc) prior to 4.5.56 allows remote attackers to cause a denial of service and possibly execute arbitrary code. Documents consistently describe the issue as a remote vulnerability affecting mc with the buffer underflow in the extf...

CVE-2004-1091

CVE-2004-1091 affects Midnight Commander (mc) up to version 4.5.55 and earlier, where a remote user can cause a denial of service by triggering a null pointer dereference. The issue is listed among multiple MC vulnerabilities (with related CVEs) and is discussed in various advisories and vulnerab...

CVE-2004-1009

Summary (CVE-2004-1009) Midnight Commander (mc) versions up to 4.5.55 are affected. The vulnerability allows a remote attacker to trigger a denial of service (infinite loop) via unknown attack vectors. Public sources in the connected documents tie this CVE to multiple advisories (e.g., RHSA-2005:...

CVE-2004-1005

Multiple buffer overflows in Midnight Commander mc 4.5.55 and earlier allow remote attackers to have an unknown impact...

CVE-2004-1174

direntry.c in Midnight Commander mc 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existing file handles."...

CVE-2004-1176

Buffer underflow in extfs.c in Midnight Commander mc 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code...

CVE-2004-1005

CVE-2004-1005 refers to multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier. The initial description notes remote attackers could trigger these issues with unknown impact, and connected advisories (e.g., Debian DSA 639-1, Gentoo GLSA 200502-24, SuSE OpenVAS entries) indicate t...