Описание
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2000-1109
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5929
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0373.html
- http://www.debian.org/security/2001/dsa-036
- http://www.novell.com/linux/security/advisories/2001_011_mc.html
- http://www.securityfocus.com/bid/2016
EPSS
CVE ID
Связанные уязвимости
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
EPSS