Unrated severityNVD Advisory· Published Oct 10, 2012· Updated Jun 16, 2026
CVE-2012-4463
CVE-2012-4463
Description
Midnight Commander (mc) 4.8.5 does not properly handle the (1) MC_EXT_SELECTED or (2) MC_EXT_ONLYTAGGED environment variables when multiple files are selected, which allows user-assisted remote attackers to execute arbitrary commands via a crafted file name.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:midnight-commander:midnight_commander:4.8.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:midnight-commander:midnight_commander:4.8.5:*:*:*:*:*:*:*
- (no CPE)range: =4.8.5
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.