4.6
CVE-2000-1109
- EPSS 0.08%
- Veröffentlicht 09.01.2001 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Midnight Commander (mc) 4.5.51 and earlier does not properly process malformed directory names when a user opens a directory, which allows other local users to gain privileges by creating directories that contain special characters followed by the commands to be executed.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Midnight Commander ≫ Midnight Commander Version4.5.40
Midnight Commander ≫ Midnight Commander Version4.5.41
Midnight Commander ≫ Midnight Commander Version4.5.42
Midnight Commander ≫ Midnight Commander Version4.5.43
Midnight Commander ≫ Midnight Commander Version4.5.44
Midnight Commander ≫ Midnight Commander Version4.5.45
Midnight Commander ≫ Midnight Commander Version4.5.46
Midnight Commander ≫ Midnight Commander Version4.5.47
Midnight Commander ≫ Midnight Commander Version4.5.48
Midnight Commander ≫ Midnight Commander Version4.5.49
Midnight Commander ≫ Midnight Commander Version4.5.50
Midnight Commander ≫ Midnight Commander Version4.5.51
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.199 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|