Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1004

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1004
Last Modified 10 Sep 2008 03:28:34
Published 14 Apr 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1004

Summary

Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact.

Vulnerable Systems

Operating System

  • Debian Linux 3.0

  • Gentoo Linux

  • Redhat Enterprise Linux 2.1

  • Redhat Linux Advanced Workstation 2.1

  • Suse Linux 8.0

  • Suse Linux 8.1

  • Suse Linux 8.2

  • Suse Linux 9.0

  • Suse Linux 9.1

  • Suse Linux 9.2

  • Turbolinux Server 7.0

  • Turbolinux Server 8.0

  • Turbolinux Workstation 7.0

  • Turbolinux Workstation 8.0

Application

  • Midnight Commander 4.5.40

  • Midnight Commander 4.5.41

  • Midnight Commander 4.5.42

  • Midnight Commander 4.5.43

  • Midnight Commander 4.5.44

  • Midnight Commander 4.5.45

  • Midnight Commander 4.5.46

  • Midnight Commander 4.5.47

  • Midnight Commander 4.5.48

  • Midnight Commander 4.5.49

  • Midnight Commander 4.5.50

  • Midnight Commander 4.5.51

  • Midnight Commander 4.5.52

  • Midnight Commander 4.5.54

  • Midnight Commander 4.5.55

  • Midnight Commander 4.6


References

REDHAT - RHSA-2005:217

SECUNIA - 13863

XF - midnightcommander-format-string(18902)

GENTOO - GLSA-200502-24

DEBIAN - DSA-639


Last Updated: 27 May 2016 10:38:51