CVE-2004-1175
published 2005-04-14CVE-2004-1175: fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.63%
73.2th percentile
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | mc | < mc 1:4.6.0-4.6.1-pre3-1 (bookworm) | mc 1:4.6.0-4.6.1-pre3-1 (bookworm) |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| midnight_commander | midnight_commander | — | — |
| redhat | enterprise_linux | — | — |
| redhat | linux_advanced_workstation | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7hfv-2p5w-ww28: fish
ghsa_unreviewed·2022-04-29
CVE-2004-1175 [HIGH] GHSA-7hfv-2p5w-ww28: fish
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
OSV
CVE-2004-1175: fish
osv·2005-04-14·CVSS 7.5
CVE-2004-1175 [HIGH] CVE-2004-1175: fish
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
Red Hat
security flaw
vendor_redhat·2005-01-14·CVSS 7.5
CVE-2004-1175 [HIGH] security flaw
security flaw
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
Debian
CVE-2004-1175: mc - fish.c in midnight commander allows remote attackers to execute arbitrary progra...
vendor_debian·2004·CVSS 7.5
CVE-2004-1175 [HIGH] CVE-2004-1175: mc - fish.c in midnight commander allows remote attackers to execute arbitrary progra...
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
Scope: local
bookworm: resolved (fixed in 1:4.6.0-4.6.1-pre3-1)
bullseye: resolved (fixed in 1:4.6.0-4.6.1-pre3-1)
forky: resolved (fixed in 1:4.6.0-4.6.1-pre3-1)
sid: resolved (fixed in 1:4.6.0-4.6.1-pre3-1)
trixie: resolved (fixed in 1:4.6.0-4.6.1-pre3-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2004-1175 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2004-1175 [HIGH] CVE-2004-1175 security flaw
CVE-2004-1175 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters.
Bugzilla
CAN-2004-1009 Multiple mc issues (CAN-2004-1090 CAN-2004-1091 CAN-2004-1093 CAN-2004-1174 CAN-2004-1175 CAN-2005-0763)
bugzilla·2005-05-24
[MEDIUM] CAN-2004-1009 Multiple mc issues (CAN-2004-1090 CAN-2004-1091 CAN-2004-1093 CAN-2004-1174 CAN-2004-1175 CAN-2005-0763)
CAN-2004-1009 Multiple mc issues (CAN-2004-1090 CAN-2004-1091 CAN-2004-1093 CAN-2004-1174 CAN-2004-1175 CAN-2005-0763)
During the FC4 security audit, we came across a number of mc issues that have
not been fixed. The CVE id's in the Summary is all we know at the moment.
Jindrich, what do you think will be the easiest way to fix all these?
Discussion:
Hello Josh,
There's Fedora Legacy bug 152889, where some things related to these issues are
discussed and some of the patches might be ported to our RHEL-2.1 mc. I'm not
sure at the moment whether all the fixes are incorporated there. I'll have a
closer look into this.
---
*** Bug 153985 has been marked as a duplicate of this bug. ***
---
Josh,
I backported fixes for CAN-2004-1009, CAN-2004-1090, CAN-2004-1091,
CAN-2004-1093, CAN-200
http://secunia.com/advisories/13863/http://securitytracker.com/id?1012903http://www.debian.org/security/2005/dsa-639http://www.redhat.com/support/errata/RHSA-2005-512.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/18906http://secunia.com/advisories/13863/http://securitytracker.com/id?1012903http://www.debian.org/security/2005/dsa-639http://www.redhat.com/support/errata/RHSA-2005-512.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/18906
2005-04-14
Published