CVE-2012-4463
published 2012-10-10CVE-2012-4463: Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected…
PriorityP431medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
1.87%
76.7th percentile
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mc | < mc 3:4.8.8-1 (bookworm) | mc 3:4.8.8-1 (bookworm) |
| midnight-commander | midnight_commander | — | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
vendor_debian5.1LOW
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rmf6-73g7-v4xm: Midnight Commander (mc) 4
ghsa_unreviewed·2022-05-17
CVE-2012-4463 [MEDIUM] CWE-20 GHSA-rmf6-73g7-v4xm: Midnight Commander (mc) 4
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
OSV
CVE-2012-4463: Midnight Commander (mc) 4
osv·2012-10-10·CVSS 5.1
CVE-2012-4463 [MEDIUM] CVE-2012-4463: Midnight Commander (mc) 4
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
Red Hat
mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
vendor_redhat·2012-09-28·CVSS 5.1
CVE-2012-4463 [MEDIUM] mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
Package: mc (Red Hat Enterprise Linux 5) - Not affected
Package: mc (Red Hat Enterprise Linux 6) - Not affected
Debian
CVE-2012-4463: mc - Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED o...
vendor_debian·2012·CVSS 5.1
CVE-2012-4463 [MEDIUM] CVE-2012-4463: mc - Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED o...
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
Scope: local
bookworm: resolved (fixed in 3:4.8.8-1)
bullseye: resolved (fixed in 3:4.8.8-1)
forky: resolved (fixed in 3:4.8.8-1)
sid: resolved (fixed in 3:4.8.8-1)
trixie: resolved (fixed in 3:4.8.8-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files [fedora-all]
bugzilla·2012-10-03·CVSS 5.1
CVE-2012-4463 [MEDIUM] CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files [fedora-all]
CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraprojec
Bugzilla
CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
bugzilla·2012-10-03·CVSS 5.1
CVE-2012-4463 [MEDIUM] CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
CVE-2012-4463 mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files
A security flaw was found in the way Midnight Commander, a user-friendly text console file manager and visual shell, performed sanitization of MC_EXT_SELECTED environment variable when multiple files were selected (first selected file was used as actual content of the MC_EXT_SELECTED variable, while the remaining files were provided as arguments to the temporary script, handling the F3 / Enter key press event). A remote attacker could provide a specially-crafted archive that, when expanded and previewed by the victim could lead to arbitrary code execution with the privileges of the user running mc executable.
References:
[1] https://bugs.gentoo.org/show_bug.cgi?id=436518
Upstream ticket:
[2]
http://www.openwall.com/lists/oss-security/2012/10/03/4http://www.openwall.com/lists/oss-security/2012/10/03/5http://www.securityfocus.com/bid/55777https://bugs.gentoo.org/show_bug.cgi?id=436518#c7https://bugzilla.redhat.com/show_bug.cgi?id=862813https://exchange.xforce.ibmcloud.com/vulnerabilities/79033https://www.midnight-commander.org/ticket/2913http://www.openwall.com/lists/oss-security/2012/10/03/4http://www.openwall.com/lists/oss-security/2012/10/03/5http://www.securityfocus.com/bid/55777https://bugs.gentoo.org/show_bug.cgi?id=436518#c7https://bugzilla.redhat.com/show_bug.cgi?id=862813https://exchange.xforce.ibmcloud.com/vulnerabilities/79033https://www.midnight-commander.org/ticket/2913
2012-10-10
Published