|
Midnight Commander Multiple Unspecified Vulnerabilities
|
|
Secunia Advisory:
|
SA13859
|
|
|
Release Date:
|
2005-01-14
|
|
Last Update:
|
2005-06-17
|
|
Popularity:
|
9,486 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Unknown
Privilege escalation
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | GNU Midnight Commander 4.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2004-1004
CVE-2004-1005
CVE-2004-1009
CVE-2004-1090
CVE-2004-1091
CVE-2004-1092
CVE-2004-1093
CVE-2004-1174
CVE-2004-1175
CVE-2004-1176
CVE-2005-0763
|
|
Description:
Multiple vulnerabilities have been reported in Midnight Commander, where many have an unknown impact and others can be exploited to cause a DoS (Denial of Service) or potentially perform certain actions with escalated privileges.
The vulnerabilities are caused due to various types of errors including format string errors and buffer overflows.
No more information is currently available.
Solution:
The vulnerabilities have reportedly been fixed in the CVS repository.
Provided and/or discovered by:
Reported in a Debian advisory.
Changelog:
2005-06-17: Updated CVE references.
Original Advisory:
http://www.debian.org/security/2005/dsa-639
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
