CVE-2004-0226

8 documents7 sources
Severity
10.0CRITICAL
EPSS
1.2%
top 21.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Gentoo LinuxMidnight Commander Midnight CommanderSGI Propack+1 more
Timeline
PublishedAug 18
Latest updateApr 29

Description

Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages5 packages

Debianmc< 1:4.6.0-4.6.1-pre1-2+3
NVDsgi/propack2.3, 2.4+1
NVDgentoo/linux5 versions+4

Patches

Patch: www.redhat.comPatch: www.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-qmq2-rfjr-gc2h: Multiple buffer overflows in Midnight Commander (mc) before 42022-04-29
OSV
CVE-2004-0226: Multiple buffer overflows in Midnight Commander (mc) before 42004-08-18
CVEList
CVE-2004-0226: Multiple buffer overflows in Midnight Commander (mc) before 42004-05-05

📋Vendor Advisories

2
Red Hat
security flaw2004-04-29
Debian
CVE-2004-0226: mc - Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow atta...2004

💬Community

1
Bugzilla
CVE-2004-0226 security flaw2018-08-16