Title: Midnight Commander Directory Viewing Command Execution Vulnerability
Severity: MODERATE
Description:
Midnight Commander is a popular file management tool for unix systems. Among many other features, Midnight Commander allows users to traverse their filesystem using a menu-style console interface. There exists a vulnerability in the way Midnight Commander handles directories that may allow for arbitrary commands to be executed when maliciously created directories are opened.
Attackers can embed commands into directory names after certain byte values (0x03 and 0x14) that will be executed when a user running Midnight Commander opens them. Because Midnight Commander doesn't list entire directory names in the filesystem window if they are long, this sequence of characters (nonprintable) and the commands can be hidden from the user if enough printable/normal looking characters preceed them.
This vulnerability requires direct user interaction (user must open the malicious directory with Midnight commander) to be exploited.
If exploited, this vulnerability can result in an elevation of privileges for the attacker.
Affected Products:
- Midnight Commander Midnight Commander 4.5.40
- Midnight Commander Midnight Commander 4.5.41
- Midnight Commander Midnight Commander 4.5.42
- Midnight Commander Midnight Commander 4.5.43
- Midnight Commander Midnight Commander 4.5.44
- Midnight Commander Midnight Commander 4.5.45
- Midnight Commander Midnight Commander 4.5.46
- Midnight Commander Midnight Commander 4.5.47
- Midnight Commander Midnight Commander 4.5.48
- Midnight Commander Midnight Commander 4.5.49
- Midnight Commander Midnight Commander 4.5.50
- Midnight Commander Midnight Commander 4.5.51
- SCO OpenLinux Server 3.1.1
- SCO OpenLinux Workstation 3.1.1
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
