PT-2004-1004 · Debian+2 · Debian+2

Published

2004-05-05

Updated

2022-01-19

CVE-2004-0232

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Midnight Commander versions prior to 4.6.0 gmc (affected versions not specified)

Description The issue involves multiple format string vulnerabilities that may allow attackers to cause a denial of service or execute arbitrary code. Additionally, there are vulnerabilities in the gmc package of Debian GNU/Linux that can lead to violations of confidentiality, integrity, and availability of protected information, with the potential for remote exploitation.

Recommendations For Midnight Commander versions prior to 4.6.0, update to version 4.6.0 or later to resolve the issue. For gmc, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2022-1068

ALT-PU-2022-1089

BDU:2015-01363

CVE-2004-0232

DSA-497

Affected Products

Alt Linux

Debian

Midnight Commander

PT-2004-1004 · Debian+2 · Debian+2

CVE-2004-0232

Related Identifiers

Affected Products

References · 44