Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0026

6 documents5 sources
Severity
10.0CRITICAL
EPSS
8.0%
top 7.89%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
SCO UnixwareWindowmaker Wmmon
Timeline
PublishedDec 21
Latest updateApr 30

Description

Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

â–¶NVDsco/unixware7.1
â–¶NVDwindowmaker/wmmon1.0b2

🔴Vulnerability Details

2
GHSA
GHSA-h3gh-fgjq-2grf: Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string↗2022-04-30
â–¶
CVEList
CVE-2000-0026: Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string↗2000-03-22
â–¶

💥Exploits & PoCs

2
Exploit-DB
Microsoft IIS - ASP Stack Overflow (MS06-034)↗2006-07-21
â–¶
Exploit-DB
SCO Unixware 7.1 - i2odialogd Remote Buffer Overflow↗1999-12-22
â–¶

📋Vendor Advisories

1
Red Hat
security flaw↗2000-12-11
â–¶
CVE-2000-0026 (CRITICAL CVSS 10) | Buffer overflow in UnixWare i2odial | cvebase.io