Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2004-0226 — mc - several vulnerabilities · VulnScope

CVE-2004-0226

mc - several vulnerabilities

EPSS 1.2%

Description

Multiple buffer overflows in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.

How to fix CVE-2004-0226

To remediate CVE-2004-0226, upgrade the affected package to a fixed version below.

Debian/mc—upgrade to 1:4.6.0-4.6.1-pre1-2 or later
Debian/mc—upgrade to 4.5.55-1.2woody3 or later

Is CVE-2004-0226 being exploited?

Low — EPSS is 1.2%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 1:4.6.0-4.6.1-pre1-2
from 0, < 4.5.55-1.2woody3

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2004-0226

Metadata

Published: 8/18/2004
Modified: 3/9/2026

Also known as:

DSA-497dsa
DEBIAN-CVE-2004-0226debian