Search for packages
| purl | pkg:deb/debian/mc@4.1.35-1 |
| Next non-vulnerable version | 3:4.8.13-3 |
| Latest non-vulnerable version | 3:4.8.29-2 |
| Risk | 0.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-17bv-8sdu-t7ga
Aliases: CVE-2012-4463 |
GNU Midnight Commander does not properly sanitize environment variables, possibly resulting in execution of arbitrary code or Denial of Service. |
Affected by 0 other vulnerabilities. |
|
VCID-3343-pdmr-5fak
Aliases: CVE-2004-1093 |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." |
Affected by 1 other vulnerability. |
|
VCID-35x8-tqbj-w3ag
Aliases: CVE-2004-0232 |
Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. |
Affected by 1 other vulnerability. |
|
VCID-3mga-tcjm-7uf8
Aliases: CVE-2004-1176 |
Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code. |
Affected by 1 other vulnerability. |
|
VCID-59s4-f3mz-cuds
Aliases: CVE-2004-0231 |
Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations." |
Affected by 1 other vulnerability. |
|
VCID-6fs5-cn2y-nfg5
Aliases: CVE-2004-1009 |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors. |
Affected by 1 other vulnerability. |
|
VCID-8fxh-qgyz-wbgx
Aliases: CVE-2004-1174 |
direntry.c in Midnight Commander (mc) 4.5.55 and earlier allows attackers to cause a denial of service by "manipulating non-existing file handles." |
Affected by 1 other vulnerability. |
|
VCID-8x36-txn8-wufy
Aliases: CVE-2003-1023 |
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion. |
Affected by 1 other vulnerability. |
|
VCID-db7q-6rry-kkbh
Aliases: CVE-2005-0763 |
Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code. |
Affected by 1 other vulnerability. |
|
VCID-dsrk-ne3a-kucx
Aliases: CVE-2004-1091 |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. |
Affected by 1 other vulnerability. |
|
VCID-f1ej-qbby-vfau
Aliases: CVE-2004-1092 |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. |
Affected by 1 other vulnerability. |
|
VCID-gzet-7ays-xuep
Aliases: CVE-2004-1090 |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." |
Affected by 1 other vulnerability. |
|
VCID-p8hb-t14c-fkeu
Aliases: CVE-2004-1005 |
Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact. |
Affected by 1 other vulnerability. |
|
VCID-pzk9-4vj9-qbac
Aliases: CVE-2004-0226 |
Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code. |
Affected by 1 other vulnerability. |
|
VCID-rn3h-hur9-v7fh
Aliases: CVE-2004-1175 |
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters. |
Affected by 1 other vulnerability. |
|
VCID-wfnx-rtp5-ukbn
Aliases: CVE-2004-1004 |
Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||