Lucene search
HistoryAug 18, 2004 - 4:00 a.m.
CVE-2004-0226
buffer overflow
midnight commander
mc
denial of service
arbitrary code
cve-2004-0226
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.0%
Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.
Affected configurations
Node
midnight_commandermidnight_commanderMatch4.5.40
ORmidnight_commandermidnight_commanderMatch4.5.41
ORmidnight_commandermidnight_commanderMatch4.5.42
ORmidnight_commandermidnight_commanderMatch4.5.43
ORmidnight_commandermidnight_commanderMatch4.5.44
ORmidnight_commandermidnight_commanderMatch4.5.45
ORmidnight_commandermidnight_commanderMatch4.5.46
ORmidnight_commandermidnight_commanderMatch4.5.47
ORmidnight_commandermidnight_commanderMatch4.5.48
ORmidnight_commandermidnight_commanderMatch4.5.49
ORmidnight_commandermidnight_commanderMatch4.5.50
ORmidnight_commandermidnight_commanderMatch4.5.51
ORmidnight_commandermidnight_commanderMatch4.5.52
ORmidnight_commandermidnight_commanderMatch4.5.55
ORmidnight_commandermidnight_commanderMatch4.6
ORsgipropackMatch2.3
ORsgipropackMatch2.4
Node
gentoolinuxMatch0.5
ORgentoolinuxMatch0.7
ORgentoolinuxMatch1.1a
ORgentoolinuxMatch1.2
ORgentoolinuxMatch1.4
ORgentoolinuxMatch1.4rc1
ORgentoolinuxMatch1.4rc2
ORgentoolinuxMatch1.4rc3
ORslackwareslackware_linux
ORslackwareslackware_linuxMatch9.0
ORslackwareslackware_linuxMatch9.1
Related
debiancve
debiancve
CVE-2004-0226
2004-08-18 04:00:00
cvelist
cvelist
CVE-2004-0226
2004-05-05 04:00:00
ubuntucve
ubuntucve
CVE-2004-0226
2004-08-18 00:00:00
nvd
nvd
CVE-2004-0226
2004-08-18 04:00:00
nessus
nessus
GLSA-200405-21 : Midnight Commander: Multiple vulnerabilities
2004-08-30 00:00:00
FreeBSD : Midnight Commander buffer overflows, format string bugs, and insecure temporary file handling (106)
2004-07-06 00:00:00
Slackware 9.0 / 9.1 / current : mc (SSA:2004-136-01)
2005-07-13 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2004-136-01)
2012-09-10 00:00:00
Debian: Security Advisory (DSA-497)
2008-01-17 00:00:00
FreeBSD Ports: mc
2008-09-04 00:00:00
debian
debian
[SECURITY] [DSA 497-1] New mc packages fix several vulnerabilities
2004-04-29 19:27:49
[SECURITY] [DSA 497-1] New mc packages fix several vulnerabilities
2004-04-29 19:27:49
freebsd
freebsd
redhat
redhat
(RHSA-2004:172) mc security update
2004-05-19 00:00:00
slackware
slackware
mc
2004-05-17 02:27:55
securityvulns
securityvulns
[Full-Disclosure] MDKSA-2004:039 - Updated mc packages fix vulnerabilities
2004-04-30 00:00:00
gentoo
gentoo
Midnight Commander: Multiple vulnerabilities
2004-05-26 00:00:00
osv
osv
mc - several vulnerabilities
2004-04-29 00:00:00
suse
suse
local privilege escalation in mc
2004-05-14 14:09:57
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.0%
Related for CVE-2004-0226