CVE-2000-1109
NONE EPSS 25.8%
Published Jan 9, 200125y ago · Modified Jun 16, 20262w ago
Published Jan 9, 2001 25y ago
Last Modified Jun 16, 2026 2w ago
Description
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
Threat Intelligence
EPSS Exploit Probability
25.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Affected Products 12
| Vendor | Product | Version | Range |
|---|---|---|---|
| midnight_commander | midnight_commander | 4.5.40 | any |
| midnight_commander | midnight_commander | 4.5.41 | any |
| midnight_commander | midnight_commander | 4.5.42 | any |
| midnight_commander | midnight_commander | 4.5.43 | any |
| midnight_commander | midnight_commander | 4.5.44 | any |
| midnight_commander | midnight_commander | 4.5.45 | any |
| midnight_commander | midnight_commander | 4.5.46 | any |
| midnight_commander | midnight_commander | 4.5.47 | any |
| midnight_commander | midnight_commander | 4.5.48 | any |
| midnight_commander | midnight_commander | 4.5.49 | any |
| midnight_commander | midnight_commander | 4.5.50 | any |
| midnight_commander | midnight_commander | 4.5.51 | any |
References 5
- archives.neohapsis.com http://archives.neohapsis.com/archives/bugtraq/2000-11/0373.html
- debian.org http://www.debian.org/security/2001/dsa-036
- novell.com http://www.novell.com/linux/security/advisories/2001_011_mc.html
- securityfocus.com http://www.securityfocus.com/bid/2016
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/5929
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.