Midnight Commander Local Arbitrary Program Execution Vulnerability BugTraq ID: 2455 Remote: No Date Published: 2001-03-07 Relevant URL: http://www.securityfocus.com/bid/2455 Summary: Midnight Commander is a Unix file manager. A vulnerability exists in versions of Midnight Commander which can allow a malicious local user to run arbitrary programs as the uid of another user running MC. Properly exploited, if the user running MC has sufficiently high privileges, the attacker may be able to compromise root. - Pour poster une annonce: [EMAIL PROTECTED]
