CVE-2004-1175 - Southernmost Tides

Description

fish.c in midnight commander allows remote attackers to execute arbitrary programs via \insecure filename quoting\ possibly using shell metacharacters.

Reference

http://www.debian.org/security/2005/dsa-639 http://secunia.com/advisories/13863/ http://securitytracker.com/id?1012903 http://www.redhat.com/support/errata/RHSA-2005-512.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18906